I have 2 outside connections one of which works as a backup connection. I am trying to setup SLA monitor so that when primary fails, the secondary connection takes over. However I never get connected to the primary connection after reboot, the backup connection is active after reboot. I configure:

sla monitor 1

type echo protocol ipIcmpEcho x.x.x.x interface INET

num-packets 3

timeout 1000

frequency 20

sla monitor schedule 1 life forever start-time now

track 1 rtr 1 reachability

route INET 0.0.0.0 0.0.0.0 89.x.x.73 1 track 1

at this moment two route config exist:

route INET 0.0.0.0 0.0.0.0 89.x.x.73 1 track 1

route INET 0.0.0.0 0.0.0.0 89.x.x.73

I delete the:

no route INET 0.0.0.0 0.0.0.0 89.x.x.73

Now this works as it should. However, once I reload  (after write), the backup connection is active.

The only way it works even after reload is when in sla monitor 1:

type echo protocol ipIcmpEcho 89.x.x.73 interface INET

ie. If I am trying to ping the gateway.

Also I have noticed if one connection is active eg INET: ping INETSDSL 8.8.8.8 makes no response however ping INET 8.8.8.8 works fine. And if backup connection is active, ping INET 8.8.8.8 gives no result but ping INETSDSL 8.8.8.8 works fine.

Some config details:

route INET 0.0.0.0 0.0.0.0 89.x.x.73 1 track 1

route INETSDSL 0.0.0.0 0.0.0.0 10.x.x.x 254

sla monitor 1

type echo protocol ipIcmpEcho x.x.x.x interface INET

num-packets 3

timeout 1000

frequency 20

sla monitor schedule 1 life forever start-time now

track 1 rtr 1 reachability

sh ver:

Cisco Adaptive Security Appliance Software Version 8.2(1)11

Device Manager Version 6.2(5)

Any ideas how to make it work?