We currently have 4 unbound ADSL lines (4 seperate public IP addresses), however currently we are forcing VPN traffic to use a particular line as we had problems with load balancing.
The problem is that upload speed is very poor and the connection just grinds to a halt. Ideally I want to get VPN connections to use mutiple lines. This will mean the user will have to have multiple VPN connection. If one is performing poorly then they could try another line. Still not ideal but at least it would be a workable solution if I can get the load balancing working.
Here's the key bits of the config (will post all if required)
Half the problem at the moment the VPN server 192.168.1.1 in this case would end up matching two Server route-maps however only would be caught by the first.
In theory without these Server route maps it should work but doesn't seem to.
I'm guessing thats to do with when the response to the VPN connection goes out the interface FastEthernet0/0 it then picks the next line which could be different from the line the incomming VPN connection was made so the packets never get received by the client and therefore cannot connect to the VPN.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...