I have read through countless posts on my question and have gleaned a lot of information from them.
My scenario is this.
We have a 6500 core connected to two ASA's in active/standby mode. The ASAs are connected to two 3550 switches which are providing BGP pairing with each other and our ISPs Internet links, both 1Gb/s one to each switch, running as primary/backup. The ASA has a default route to the HSRP address shared by the switches.
We have cause to allocate a subnet from our range to a third party temporarily. I would like to route this subnet through the backup link (outgoing and incoming)
I can configure BGP to route accordingly, but this will only apply for incoming traffic.
I could put a route-map on on of the 3550's to reroute traffic based on source ip to use the other switch/backup link, but this will waste bandwidth on the switch interface.
Any other ideas how I can push one subnet out of one switch, and the rest through the other?
You could use the weight attribute in BGP to influence that route to go out the backup circuit. You will have to configure it using a route map so only the specific route gets weighted. I think a static route would work too. Since the ASA does not support PBR, I don't think it's possible there.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...