ASA 5510 2 ISP's & VPN

Unanswered Question
Jul 20th, 2009
User Badges:

I have an ASA 5510 in our primary location with all inbound / outbound traffic directed through it to our primary ISP. I now have 5 systems in a remote datacenter behind a 2nd ASA 5510 and a 2nd WAN link from a 2nd ISP (the data center). I want to use this 2nd ISP for site to site communication between our main office and remote datacenter only (through a site to site VPN between the 2 ASA's) and have all other internet traffic go through our primary ISP but am stuck on how to configure it. Has anyone tried or seen anything similar? Thanks!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Collin Clark Mon, 07/20/2009 - 13:27
User Badges:
  • Purple, 4500 points or more

You can tunnel all traffic ( and use the same-security-traffic permit intra-interface command on the main ASA to then allow internet access for the remote DC.

Hope that helps.


This Discussion