Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
212
Views
0
Helpful
1
Replies

Particular Dual ISP

andre even
Level 1
Level 1

‎10-02-2013 10:37 AM - edited ‎03-11-2019 07:46 PM

                   Hi,

Today the customer is using Internet network for establishing a VPN tunnel with a foreign agency

but now that they have added an MPLS network,

So they would like to use the MPLS network to reach the foreign agency and in case of failure

they will reuse the Internet network for the VPN tunnel.

Moreover they also want to use a Dual ISP for Internet access.

The solution is implemented on an HA  cluster of 2 x ASA  running 8.4.2.

route outside 0.0.0.0 0.0.0.0 <router internet isp1> 1

I have read with attention the document "Redundant or Backup ISP links Configuration Example".

For Internet access through both ISP's it seems to be OK

Can i use another Track ID to manage communication with the foreign agency

using the Intranet interface on the ASA as the main access and the outside 1 or 2 interfaces for the backup.

Is it realistic or do i miss sonmething.

PS: i have attached the design of what i am going to implement.

Best regards.

Andre

Labels:
15368443-architecture_future -light.vsd.zip
0 Helpful
1 Reply 1

Julio Carvajal
VIP Alumni
VIP Alumni

‎10-02-2013 10:48 AM

Hello Andre,

So you mean

Send the traffic via A and if A fails go to B and if B fails go to C?

All of this via SLA monitoring ?

Yeah, I do not see why it should not work.

It is supported

For more information about Core and Security Networking follow my website at http://laguiadelnetworking.com

Any question contact me at jcarvaja@laguiadelnetworking.com

Cheers,

Julio Carvajal Segura

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card