Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
554
Views
2
Helpful
6
Replies

ASA Stie to Stie VPN architecture

Go to solution
hawkwu0503
Level 1
Level 1

‎08-21-2017 07:42 PM - edited ‎02-21-2020 06:13 AM

Our company has two IPS planning an IPS to USER using the Internet access, and the other would like to establish a branch to the branch office for the use of the company's internal services, whether both site are Cisco ASA equipment can achieve this The architecture? thanks a lot!

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Francesco Molino
VIP Alumni
VIP Alumni
In response to hawkwu0503

‎08-23-2017 08:32 PM

Hi 

I googled it took try to found some step by step quickly and this what it looks like: 

 

https://www.google.ca/amp/s/oasysadmin.com/2013/06/14/cisco-asa-with-dual-isps-one-for-internet-and-one-for-vpn-example/amp/

 

On the forum you should be able to found posts talking about that. 

 

I'm on my mobile right now and can't share some configs.

Take a look at these links I've forwarded and if you're not able to do that let me know, I'll try to build you a config quickly if I've time tomorrow.

 

Thanks


Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question

View solution in original post

6 Replies 6

Go to solution
Francesco Molino
VIP Alumni
VIP Alumni

‎08-21-2017 09:10 PM

Hi 

 

By IPS you mean ISP? 2 internet provider link? 

You can have 2 links and keep 1 for internet and the other for vpn. 

You need to take care of nat and also add static route to reach remote sites through isp2 and have 1 default route going through isp1. 

 

If you give more information like remote subnet and your actual config, i can help you building the right config. 

 

Thanks 

PS: Please don't forget to rate helpful answers


Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question

Go to solution
hawkwu0503
Level 1
Level 1
In response to Francesco Molino

‎08-23-2017 08:26 PM

Hi,

Is there a reference can refer to it?

Thanks

0 Helpful

Go to solution
Francesco Molino
VIP Alumni
VIP Alumni
In response to hawkwu0503

‎08-23-2017 08:32 PM

Hi 

I googled it took try to found some step by step quickly and this what it looks like: 

 

https://www.google.ca/amp/s/oasysadmin.com/2013/06/14/cisco-asa-with-dual-isps-one-for-internet-and-one-for-vpn-example/amp/

 

On the forum you should be able to found posts talking about that. 

 

I'm on my mobile right now and can't share some configs.

Take a look at these links I've forwarded and if you're not able to do that let me know, I'll try to build you a config quickly if I've time tomorrow.

 

Thanks


Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question

Go to solution
hawkwu0503
Level 1
Level 1
In response to Francesco Molino

‎08-24-2017 05:01 PM

Hi

Thank you for your help!

0 Helpful

Go to solution
Francesco Molino
VIP Alumni
VIP Alumni
In response to hawkwu0503

‎08-24-2017 05:04 PM

Thanks.
You're welcome

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
0 Helpful

Go to solution
Philip D'Ath
VIP Alumni
VIP Alumni

‎08-23-2017 09:17 PM

This kind of configuration is much easier to do using Cisco Meraki MX security appliances.

https://meraki.cisco.com/products/appliances

 

Here is the section on load balancing and flow preferences.

https://documentation.meraki.com/MX-Z/Firewall_and_Traffic_Shaping/MX_Load_Balancing_and_Flow_Preferences

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card