ASA5520 - Can I utilize two Outside ports on different ISPs?
We are in the process of migrating our ISP from two Sprint T1s to a 20Mb Fiber based connection. I have a new front end router(2911) that will be in front of the ASA, and I have an empty interface on the ASA. Can I use both connections concurrently? I'm not trying to load balance or anything like that, and the new interface will have a new class C addresses. I want to be able to continue to use the T1s while I can slowly move services over to the new ISP and new interface on the ASA, and then eventually retire the original Outside interface for the T1s.
Is this possible? I figured that if I assign the interface the IP, setup the ACLs, and NATs, it would work, but I know that my default route, 0.0.0.0 is pointing to the IP of my router for my T1s.
Re: ASA5520 - Can I utilize two Outside ports on different ISPs?
Unfortunately you can not have 2 default gateways concurrently pointing out from 2 different ASA interfaces. ASA is a stateful firewall, hence all traffic inbound and outbound should be symmetric, therefore, it can't have 2 default gateways pointing towards 2 different ASA interfaces.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...