02-04-2016 09:23 AM - edited 02-21-2020 05:43 AM
We currently have a ASA 5505 with 2 isp. One primary and another backup. We would like to use one isp for certain traffic web, etc and second isp for VOIP. Based on other threads, I understand that policy based routing is not possible through 5505. Is it recommended to upgrade the 5505 to a newer model to use 9.4 or keep current asa and add a router for routing.
Thanks
02-04-2016 11:55 AM
First: Do you have the security plus license? You will need that.
You can setup traffic to go out a certain interface. I have done this to share the load with and direct traffic, but the ASA is not a router.
You are using the SLA for the main failover I imagine, the one thing to remember is to let the interesting traffic know that it can use the other link if their's is down. Be careful to not set your SLA checks to a short period of time, nothing like having a connection flip every time a packet fails :) Depending on the critically, I always use 30 seconds (I think it's time based)
Here is a link with better details :)
https://supportforums.cisco.com/discussion/10871951/asa-5505-security-plus-dual-isp
02-11-2016 09:32 AM
Hello,
ASA doesn't support load balancing but only primary/backup failover with static routing and tracking feature.
Have a look on the below link for more details
http://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/70559-pix-dual-isp.html
-GI
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide