Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Internet Redundancy

I have two campuses, each with their own 100Mbps Internet connection, that I would like to configure for Internet redundancy.

My current setup consist of a split class C address block where we route addresses - .128 to campus A and addresses to campus B.

I am wanting to do an active/active type configuration so that both connections can be equally utilized during normal operating conditions, so that failover is in place during an outage at one campus. Do note that I am using the same ISP for both connections. I am thinking that I'll need (2) ASA5520's to do this. What I'm a little uncertain of is how I need to configure the equipment behind the firewall to support this type of configuation.

Do note that I am open to any other suggestions in regards to my redundant Internet solution. Any ideas would be great.



Re: Internet Redundancy

You can use the two ASAs to firewall your internet connections. Then configure them to inject default routes into OSPF on the inside on the network. This will take care of your outbound traffic.

Since you are using the same provider for both connections you can have them add floating statics for you public blocks so that can be routed to campus B in the event of an outage and vice versa. This will take care of your inbound routing.

Hope this helps,