Seperating traffic type based on dest interface

Unanswered Question
Oct 13th, 2009
User Badges:


At my old company we had an asa 5510 with a t1 connection and a DSL connection. Somehow we had SMTP and vpn route through the t1 and http etc through the dsl. I remember seeing the config and it was a really simple conf! But i cant figure out how it was done!

I have a 5505 with the sec plus, and i have 2 diff isp connections, I wanted to route specifficly HTTP&(S) and dns through one interface and all traffic out of the other, simple enough? but i cant figure it out! I know exactly how to do it with a router using route-maps....ugggg. I do remember another thing it did too! it would actually direct the dsl traffic over the t1 if the dsl failed, but this was not a backup isp config! (base 5510) it was like 2 type of default routes, i think..... I remember it was explicitly stating smtp and https over the t1 and w/e else over dsl.....

Save me....


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
johnbroadway Wed, 10/14/2009 - 02:58
User Badges:

You could NAT the Internal traffic to different external IP Addresses based upon access-lists to define the traffic types.

nat (inside) X access-list YYY

That way you'd be able to differentiate or route the traffic differently at the router.

Hope that helps,



This Discussion