Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
881
Views
0
Helpful
3
Replies

asa 5510 with dual isp

Go to solution
dereyesvl
Level 1
Level 1

‎06-04-2008 07:25 PM

hello.. it is possible for cisco asa 5510 to have load balancing between dual isp? and what will be the configurations? thanks... :D

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Farrukh Haroon
VIP Alumni
VIP Alumni

‎06-05-2008 06:21 AM

Hello

Normally for load-balancing on network devices PBR is used. I'm quoting from another of my posts on this forum:

The ASA/PIX does not support PBR to date. I've been told its on the roadmap.

As a work around, you could run multiple contexts, if its possible to break your lan subnets into two.

And also allocate the appropriate Internet interfaces to each context (with the default gateway pointing to the respective ISPs).

This link will get you started:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00808d2b63.shtml

PLEASE NOTE: Dynamic Routing and VPNs are not supported in Multiple Context mode.

Another alternate, if the WAN links are terminated on a router (and not the firewall), you could use that router to do the PBR.

Regards

Farrukh

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Farrukh Haroon
VIP Alumni
VIP Alumni

‎06-05-2008 06:21 AM

Hello

Normally for load-balancing on network devices PBR is used. I'm quoting from another of my posts on this forum:

The ASA/PIX does not support PBR to date. I've been told its on the roadmap.

As a work around, you could run multiple contexts, if its possible to break your lan subnets into two.

And also allocate the appropriate Internet interfaces to each context (with the default gateway pointing to the respective ISPs).

This link will get you started:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00808d2b63.shtml

PLEASE NOTE: Dynamic Routing and VPNs are not supported in Multiple Context mode.

Another alternate, if the WAN links are terminated on a router (and not the firewall), you could use that router to do the PBR.

Regards

Farrukh

0 Helpful

Go to solution
alig.norbert
Level 4
Level 4
In response to Farrukh Haroon

‎02-25-2009 06:42 AM

Hi Farrukh

Is PPPoE supported in Multiple Context Mode when each context has a physical WAN-port and a Trunk as LAN-port?

Thanks,

Norbert

0 Helpful

Go to solution
alig.norbert
Level 4
Level 4
In response to alig.norbert

‎02-25-2009 11:50 AM

I've found the info....

"PPPoE is not supported when failover is configured on the security appliance, or in multiple context or transparent mode. PPPoE is only supported in single, routed mode, without failover."

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/pppoe.html

0 Helpful
Customers Also Viewed These Support Documents