Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2987
Views
0
Helpful
4
Replies

Anyconnect dual ISP

Go to solution
eandcciscoadmin
Frequent Visitor
Frequent Visitor

‎09-10-2019 07:45 AM

Hello everyone,

I have a Cisco ASA configured with Dual ISP failover. The failover and failback after first ISP port shutdown and turning back on, works fine. I have a concern about Anyconnect connections after failover. Is there a way for  ASA to disconnect all Anyconnect users after failback to main ISP automatically?

By "automatically" I mean that I don't have to intervene and kill all the connections by myslef but ASA detects that main ISP is back on line and kills all second ISP Anyconnect connections.

Thanks,

Ramin

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Karsten Iwen
VIP
VIP
In response to eandcciscoadmin

‎09-10-2019 01:04 PM

I think you could automate that with an Embedded Event Manager script.

--
If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Karsten Iwen
VIP
VIP

‎09-10-2019 09:26 AM

When you clear the AnyConnect sessions, you also disturb your users work. I prefer in these scenarios to let the users continue their work on the secondary ISP connection and when they connect the next time they'll again use the primary connection.

All in all, it seems to me more user-friendly.

--
If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Helpful

Go to solution
eandcciscoadmin
Frequent Visitor
Frequent Visitor
In response to Karsten Iwen

‎09-10-2019 12:31 PM

True, but our second connection (which is really our 3rd connection has bandwidth limit (1GB)) and we need to keep our monthly bandwidth for a real disaster.

Thanks

0 Helpful

Go to solution
Karsten Iwen
VIP
VIP
In response to eandcciscoadmin

‎09-10-2019 01:04 PM

I think you could automate that with an Embedded Event Manager script.

--
If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Helpful

Go to solution
eandcciscoadmin
Frequent Visitor
Frequent Visitor
In response to Karsten Iwen

‎10-17-2019 01:04 PM

Thanks Karsten, I tied the event manager to interface status change from up to down Syslog (411002) with "noconfirm" option which immediately kills all Anyconnect connections.

Thanks for the hint.

Ramin

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card