Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ASA 5520 with two ISP?s. Question I want to use both for services insideDMZ

Hi folks, I want to use two ISP?s (Internet_1 and Inernet_2)both I had valid IP?s. I configured the NAT as following:

Real IP : 192.168.2.92

NAT (Internet_1): 200.252.153.137/32

Real IP : 192.168.2.80

NAT (Internet_2): 200.181.58.163/32

All my network uses the interface IP of Internet_1 for access Internet (NAT_access_Internet)and my Default gateway is from Internet_1. The problem is with NAT on Internet_2. The NAT to my DMZ works but when the packet reply to the host in Global Internet it uses the Internet_1 and my connection drop. (see file)

Thanks.

Ronaldo.

2 REPLIES
Silver

Re: ASA 5520 with two ISP?s. Question I want to use both for ser

Not possible for dynamic connections. If you only had certain IP's it was communicating with you could do it with static routes. Otherwise your default route will be used.

What does your outside Interfaces connect to? If you had a router there you could use policy based routing to NAT/PAT and set the default route to either interface based on what IP it came from.

or you could just use one as a backup link.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806e880b.shtml

Thanks,

Chad

New Member

Re: ASA 5520 with two ISP?s. Question I want to use both for ser

Hi Chad,

You are right. I will try do the first option at the Router of Internet.

Thanks,

Ronaldo.

126
Views
0
Helpful
2
Replies
CreatePlease to create content