Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
12208
Views
4
Helpful
6
Replies

BGP on ASA

Go to solution
shanemcanuff
Level 1
Level 1

‎08-16-2008 05:32 PM - edited ‎03-11-2019 06:32 AM

I have two ASA 5520 running, if the main firewall fail it should fail over to the 2nd, I want to get a next ISP so if the 1st ISP fail it should fail over to the next ISP, I want to use BGP to route between ISP, do I have to get a router and put it before the two ASA or I can run BGP on the two ASA, so if one ISP fail it fail over to the next ISP and keep the same config that if one firewall fail it fail over to the next ASA?

Can any one help me out, I really don't want to buy a next router.

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Marwan ALshawi
VIP Alumni
VIP Alumni

‎08-16-2008 06:17 PM

if i think about BGP then u need a router

but have a look at the following link and try to use the idea in it in ur case

not ssure if it goona work with two ASAs

but check it out and good luck

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806e880b.shtml

please, if hlepful rate

View solution in original post

0 Helpful

Go to solution
Farrukh Haroon
VIP Alumni
VIP Alumni

‎08-16-2008 09:46 PM

There isn't much benefit of using the BGP for 'just failover' unless you have the whole internet routing table and want to load balance or something. For two ISPs (with one as backup) you can use the procedure in the link provided by Marwan. The ASA does not support BGP at all. However you can make it pass through the ASA (if required).

Regards

Farrukh

View solution in original post

0 Helpful
6 Replies 6

Go to solution
Marwan ALshawi
VIP Alumni
VIP Alumni

‎08-16-2008 06:17 PM

if i think about BGP then u need a router

but have a look at the following link and try to use the idea in it in ur case

not ssure if it goona work with two ASAs

but check it out and good luck

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806e880b.shtml

please, if hlepful rate

0 Helpful

Go to solution
Farrukh Haroon
VIP Alumni
VIP Alumni

‎08-16-2008 09:46 PM

There isn't much benefit of using the BGP for 'just failover' unless you have the whole internet routing table and want to load balance or something. For two ISPs (with one as backup) you can use the procedure in the link provided by Marwan. The ASA does not support BGP at all. However you can make it pass through the ASA (if required).

Regards

Farrukh

0 Helpful

Go to solution
shanemcanuff
Level 1
Level 1
In response to Farrukh Haroon

‎08-17-2008 07:27 AM

Thx for your help, if I use this config, can I NAT two diff.. public IP to one server?

0 Helpful

Go to solution
Farrukh Haroon
VIP Alumni
VIP Alumni
In response to shanemcanuff

‎08-17-2008 08:23 AM

Yes you can!

Regards

Farrukh

Go to solution
shanemcanuff
Level 1
Level 1
In response to Farrukh Haroon

‎08-17-2008 02:41 PM

Thx for all the help you guys have given to me.

0 Helpful

Go to solution
rgmarti25
Level 1
Level 1

‎02-10-2014 03:15 PM

Wondering if any of the latest ASA updates now allow the ASA5520 to support BGP?  How about the new ASA5525, will that support BGP?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card