ASA5506-X dual wan interfaces routing

riccardodem · ‎09-24-2018

Hi all, with network topology descrived in this topic:

2x isp routers for internet access with dhcp on lan interfaces and 2 different subnets

1x asa 5506-x

2x L2 switches on lan side

i have 2 giga interfaces of the ASA configured with this comand:

ip address dhcp setroute

and nat set to balance diffent vlan traffic to different outside interfaces:

nat (vlan1,outside) source dynamic any interface
nat (vlan2,outside2) source dynamic any interface

is this configuration correct or is it preferable to use static routes? if I do a "show route" I only see default route to outside2 interface:

S* 0.0.0.0 0.0.0.0 [1/0] via 192.168.2.1, outside2

thanks

R.

balaji.bandi · ‎09-24-2018

As per your description, is the VLAN2 users working ? they able to get on to internet,

If yes, then add another static router same like outside2 replace with vlan 1 IP and outside

or post the full configuration to review and suggest.

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

riccardodem · ‎09-25-2018

attached the current conf.

GigabitEthernet1/1 to isp modem 1

GigabitEthernet1/2 to isp modem 2

vlan 101 need to get on to internet by GigabitEthernet1/1 (outside 1)

vlan 102 need to get on to internet by GigabitEthernet1/2 (outside 2)

thank you

riccardodem · ‎09-26-2018

Policy based routing can be the solution?