Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
905
Views
0
Helpful
10
Replies

2 ISPs one default route!

majedalanni
Level 1
Level 1

‎02-07-2011 12:22 PM - edited ‎03-11-2019 12:46 PM

Hi everybody,

I have problem to setup my server to use second ISP connection that is not use as a default route.

the topology is:

I have server in Ethernet 3 in my ASA55020 firewall. IP is 172.16.1.2 GW 172.16.1.1(firewall). My firewall default route is ISP1, it is tracking route if it fail firewall should use the ISP2 for default route. Now, I'd need to use ISP2 to route only my server (172.16.1.2) to the world. also I need a static Nat from ISP2 to my server. by the way I have only this server in my network 172.16.1.X no other IP's or hosts.

Please any idea?

Thanks in advance.

Mike

Labels:
0 Helpful
10 Replies 10

PAUL GILBERT ARIAS
Level 5
Level 5

‎02-07-2011 12:34 PM

On the ASA you can only have one active default gateway. You can route through ISP2 only if you have static routes to know destinations.

I hope this helps.

0 Helpful

majedalanni
Level 1
Level 1
In response to PAUL GILBERT ARIAS

‎02-07-2011 12:42 PM

Thanks for your fast reply,

I know this, but I don't have a specific destination, I read there is some tricky configuration that do this, but I didn't understand it. it is static Nat with destination.

Thanks

Mike

0 Helpful

PAUL GILBERT ARIAS
Level 5
Level 5
In response to majedalanni

‎02-07-2011 12:53 PM

can you provide a link to that tricky configuration you mentioned?

0 Helpful

PAUL GILBERT ARIAS
Level 5
Level 5
In response to majedalanni

‎02-07-2011 01:18 PM

unfortunately I can't view the answers from that site. I have a user but probably only with guest rights.

0 Helpful

majedalanni
Level 1
Level 1
In response to PAUL GILBERT ARIAS

‎02-07-2011 01:25 PM

use cached page in google

0 Helpful

PAUL GILBERT ARIAS
Level 5
Level 5
In response to majedalanni

‎02-07-2011 01:29 PM

got it.

I was able to view the example but I haven't tested it. I might be able to set up a lab and reply to you later on or maybe tomorrow.

0 Helpful

sean_evershed
Level 7
Level 7
In response to majedalanni

‎02-07-2011 06:15 PM

Mike,

Have you seen this document? https://supportforums.cisco.com/docs/DOC-13015

It is based on the assumption that you have a router in front of your firewall. You can then configure PBR on this router.

0 Helpful

majedalanni
Level 1
Level 1
In response to sean_evershed

‎02-07-2011 09:11 PM

seab, idont have router!

0 Helpful

majedalanni
Level 1
Level 1
In response to sean_evershed

‎02-07-2011 09:12 PM

Sean,

Sorry for misspell your name it was from my phone

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card