Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

ASA 5540 Failover and VPN Cluster

Hi Everyone

Is it possible to configure the ASA 5540, using LAN based Failover, to load-balance IPSEC LAN to LAN VPN's ?

I have the feeling that this cannot work, because i believe the active Firewall always will overwrite the Secondary Firewall "load-balancing" priority.

Does anyone having experience with VPN load-balancing?

Is this supporting:

- only Cisco VPN Clients?

- also Cisco EZ VPN clients (including routers + + +)?

- and Standard IPSEC connections (including LAN 2 LAN) ?

For any hints and inputs i would be grateful.

Thanx everyone

Jarle

2 REPLIES
Silver

Re: ASA 5540 Failover and VPN Cluster

A load-balancing cluster can include security appliance models ASA 5520 and ASA 5540, running ASA Release 7.1(1)software or ASA Release 7.0(x)software.

Refer this doc to know about VPN with load balancing configuration:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00805fda25.shtml

Community Member

Re: ASA 5540 Failover and VPN Cluster

I have two 5520's that I am using for the sole purpose of SSL VPN load balancing. The documentation wasn't clear on things like how to apply SSL certs but is working now and you can use it for load balancing SSL VPN which also provides fail over.

645
Views
0
Helpful
2
Replies
CreatePlease to create content