Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
332
Views
4
Helpful
1
Replies

Can ASA make PBR feature?

melatisariindah
Level 1
Level 1

‎06-04-2008 07:47 PM - edited ‎03-11-2019 05:55 AM

Hi, I want to ask about ASA 5510.

I have 2 link to internet (int eth0 and int eth1).

I want to make rule like PBR in router. For example, I want 192.168.1.0/24 (inside) for internet go to eth0 and 192.168.2.0/24 (inside) for internet go to eth1. Can it be done by ASA?

Thx and best regards,

msi

Labels:
0 Helpful
1 Reply 1

Farrukh Haroon
VIP Alumni
VIP Alumni

‎06-05-2008 02:32 AM

The ASA/PIX does not support PBR to date. I've been told its on the roadmap.

As a work around, you could run multiple contexts, where contextA inside = 192.168.1.0/24 and contextB inside = 192.168.2.0/24

And also allocate the appropriate Internet interfaces to each context (with the default gateway pointing to the respective ISPs).

This link will get you started:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00808d2b63.shtml

PLEASE NOTE: Dynamic Routing and VPNs are not supported in Multiple Context mode.

Another alternate, if the WAN links are terminated on a router (and not the firewall), you could use that router to do the PBR.

Regards

Farrukh

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card