Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
659
Views
3
Helpful
3
Replies

Multiple gateways for different Traffic on ASA 5510 firewall

itatcapital
Level 1
Level 1

‎09-27-2006 03:02 PM - edited ‎03-05-2019 12:04 PM

Hello,

My network atthe moment is set up as:

WAN, with three sites

Site 1

Site 2

Site 3

Site 1 is behind a non-Cisco firewall, which is connected to the internet via a Frame Relay link (using a Cisco 1721 router). We host a number of servers on the Internal network and DMZ's.

All sites connect to the WAN using Cisco routers or switches.

All internet traffic (IN and OUT) for all sites goes via the non-Cisco firewall.

I am interested in the ASA 5510 with six interfaces.

Using the ASA 5510 is it possible to set up two (2) internet connections, one via the Frame Relay and a second internet connection via an ADSL connection?

Then, is it possible to direct the outward-bound traffic via specific gateways based upon either:

(a) the type of traffic, say HTTP from users behind the firewall; or

(b) the IP addresses of the host (i.e. users' PC versus the servers)

Any assistance is welcome.

Kind regards,

IT@C

Labels:
0 Helpful
3 Replies 3

mmorris11
Level 4
Level 4

‎09-28-2006 08:22 AM

yes you can do this with policy routing on the internet router in front of the firewall assuming that you are connecting both ISPs to that router. Also, remember that you can do vlans on the ASA. This may cut down on the # of interfaces that you use in your config.

http://www.cisco.com/en/US/customer/products/ps6120/products_configuration_guide_chapter09186a0080636f89.html

HTH, pls rate!

itatcapital
Level 1
Level 1
In response to mmorris11

‎10-02-2006 09:22 PM

Hi,

thanks for your prompt reply and sorry about my late reply.

The VLAN idea may be a good one, however, I think that may complicate things more than I wish at the moment.

unfortunately, we will not be using the same upstream router for the two ISP's rather will be using an ADSL router/modem for the second link, so was hoping to do the routing of HTTP traffic within the ASA firewall.

BTW, I was unable to view the document you reference as I need a username/password.

thanks,

I@C

0 Helpful

konigl
Level 7
Level 7
In response to itatcapital

‎10-31-2006 08:12 AM

This may be a little late as well. But if you delete the text string "customer/" from the link you'll be able to read the information Mike was pointing you to.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card