Hi,
I think I'm experiencing asymmetric routing.
how can we prove/verify that we have asymmetric routing issues?
(SAMPLE CONF)
object network PUB1
host 2.2.0.3
object network RT1
host 10.0.0.3
nat (inside,outside) source static RT1 PUB1
object network PUB2
host 1.1.0.3
object network RT2
host 10.0.0.1
nat (inside,outside2) source static RT2 PUB2
route outside 0.0.0.0 0.0.0.0 ISP1 1 w/ track
route outside2 10.0.0.0 255.0.0.0 ISP2 1 w/ track
Acl on outside,outside2 is configured. also there's PBR configured.
Q's
is implementing traffic zone is one of the solution?
If yes
there's an Error when adding on inside int g0/1 # zone-member outside ERROR: Interface with crypto features enabled can't be part of zone but on int g0/2 its has no error.
thank you