I have (painfully!) sucessfully configured a site with dual ISP's, several site-to-site VPN's (that don't failover), inbound forwards, etc... The only remaining issue is SSH. Prior to adding a 2nd ISP, ssh on both inside and outside worked fine as expected. When both ISP interfaces are active and traffic is moving over the primary, SSH is "flakey" on all 3 interfaces. Monitoring tool shows it going up and down and is confirmed when I actually try to connect to it. Stumped. Sanitized config attached, but to me, the only relevant part is ...
ssh 0.0.0.0 0.0.0.0 inside
ssh 67.xxx.xxx.0 255.255.255.0 outside
ssh 67.xxx.xxx.0 255.255.255.0 cable
ssh timeout 15
I could possibly understand if the interface not currently being used timed out due to a lack of a route back, but all 3 interfaces are failing. As soon as one of the 2 wan interfaces is unplugged, ssh is fine on the other 2.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...