cfajardo1_2 Fri, 07/13/2007 - 00:45
User Badges:


i have 2 physical asa5520. we are thingking of creating 2 context on each asa and configure the ff


context A - active

context B - passive


context A - passive

context B - active

thereby we will be having 2 asa's with diff ip address on the outside.

we want the traffic comming in to our web servers to be load balance bet this 2 asa's


cfajardo1_2 Fri, 07/13/2007 - 22:14
User Badges:

but do i need a firewall load balancer on the outside to achieve this?

note that i now have 2 diff ip address on both the active context. how will my single outside router know to which firewall it will throw the traffic?


gabrielbryson Tue, 07/17/2007 - 01:38
User Badges:

Im not quiet convinced that active/active was really designed for load balancing in the way you are trying to achieve in on the ASA. To answer your question I would think you will need some form of external\internal load balancer, im my experience the ASA will not do what you trying in a nice clean manner all by itself.


This Discussion