Please confirm that this is right! One ASA with two ISP can only use one ISP connection at the time. With tracking I can fail over to the other ISP. But I cannot send and receive my SMTP traffic through one and use the other one for all other traffic. Right. ... well there are cheaper products that achieve more...
access-list interna_nat_static extended permit tcp host mail-server eq smtp any
nat-control global (Interface_TDM) 1 interface global (interface_ADSL) 1 interface nat (interna) 1 192.168.0.0 255.255.255.0 static (interna,Interface_TDM) tcp interface smtp access-list interna_nat_static access-group interna_access_in in interface interna access-group Interface_TDM_access_in in interface Interface_TDM access-group interface_ADSL_access_in in interface interface_ADSL route interface_ADSL 0.0.0.0 0.0.0.0 ADSLmodem 1 route Interface_TDM 0.0.0.0 0.0.0.0 TDM_router 2
In my case the bold rule is not working as long the the default route is pointing to the interface_ADSL.
Any chance to get that scenario working? (without an extra router...)
It was for me very unexpected that the ASA cant do this.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...