ASA5510 support two ISP

ooroncoym · ‎07-08-2011

Hi,

I want to configure the firewall for support two ISP (Internet)...For this goal, I configure two contexts into the ASA5510 and,

Context 1 : I configure to outside interface the GIG0/0 -> Router ISP1

I configure to inside interface the GIG0/1 -> Internal network

Context 2 : I configure to outside interface the GIG0/2 -> Router ISP2

I configure to inside interface the GIG0/3 -> Internal network

Is this configuration possible?

varrao · ‎07-08-2011

Hi,

By creating contexts on the ASA, you are creating two virtual firewalls in one box, so yes you can definitely configure it and it should not be an issue.

Hope this helps

Thanks,

Varun

Thanks,
Varun Rao

mile.ljepojevic · ‎07-09-2011

Here is the big question: do you need two contexts because you need two virtual firewalls, or you want to have one regular firewall, just with two default gateways (for failover).

If you want to have two different contexts you will have one default gateway for each context, so that is not quite what you asked...

If you will have just one inside network and want to use two different ISP for outgoing, you can do that in two ways:

2xstatic router with same AD for load balancing

1x static route with low AD and tracking + 1x static route with higher AD - redundancy.