Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
354
Views
0
Helpful
1
Replies

ASA5520 with multiple WAN. Require vlan and fileover

martinmchugh
Level 1
Level 1

‎11-14-2008 01:31 AM - edited ‎03-11-2019 07:12 AM

We have a ASA5520 with the 4 onboard ports.

DMZ LAN and Inside LAN take two of these ports. Currently we have 3 WAN connections (from 3 different sevice providers) and may get some more in the future.

Can we put all the WAN connections into the one interface using vlans ? And also is it possible to do failover with this type of set up ? That is if one WAN link goes down traffic can be routed out another vlan ?

What is the best way to do this set up ? Can you use floating static routes maybe ?

(Unfortunately, the expansion slot is reserved for an IPS card so we dont have the option to add in an SSM 4GE card to get more intercfaces )

Many thanks for you help.

Labels:
0 Helpful
1 Reply 1

Collin Clark
VIP Alumni
VIP Alumni

‎11-14-2008 06:53 AM

Martin-

The failover on an ASA is just for chassis failover. Meaaning that it can not detect a failed WAN connection and reroute to the other firewall. A router can do what you require, then you could route the traffic to the firewall. You can trunk multiple VLANs on a single ethernet port, assuming you have the correct licensing.

Hope that helps.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card