Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA 5505 not failing back to the preferred route when the ISP comes back up

I have an ASA with security plus and I set up a tracked route to failover if I lose connection to the ISP and it works, sort of.

 

I'm doing testing by just pulling the Ethernet cable. When I pull the preferred ISP cable, it fails over as expected. But when I plug the preferred ISP back in, the ASA still routes using the second ISP.

 

I see that it does add the preferred route back in with a metric of 1 but it doesn't use it unless a fail the secondary ISP (with a metric of 254)

 

I'm new to ASA and been searching around but other people don't seem to have this issue. What am I missing?

 

Thanks,

 

Misty

Everyone's tags (1)
1 REPLY
New Member

Misty,I think since both

Misty,

I think since both lines are active at this point in time, you should build in a script to clear the NAT table, something like this:

event manager applet NAT-TRACK

event track 1 state any

action 0.1 cli command "enable"

action 0.2 wait 2

action 0.3 cli command "clear ip nat translations forced"

action 0.4 syslog msg "NAT translation cleared after track state change"

102
Views
0
Helpful
1
Replies