Solved: Cisco ASA 5500-X two ISPs active

JRGC · ‎06-30-2015

Dear,

I have the following scenario.

I have two Cisco ASA 5500-X series, two ISPs (ISP 1 and ISP 2) and a Cisco 4500 series Core.

I require that Network 1 reach the internet through by ISP1 and the network 2 reach the internet through by ISP 2, additionally needs to exist VPN site to site and Site to Client connected to the ISP 1. considering that Cisco ASAs unsupported PBR

I need advice on which is the best practice to implement and complete with the requirement

Thank in you in advance

Regards

Vibhor Amrodia · ‎06-30-2015

Hi,

PBR is supported from ASA 9.4.1 onwards so i think that should be the best possible design requirement.

PBR:-

http://www.cisco.com/c/en/us/td/docs/security/asa/asa94/configuration/general/asa-general-cli/route-policy-based.html

Thanks and Regards,

Vibhor Amrodia

View solution in original post

Vibhor Amrodia · ‎06-30-2015

Hi,

PBR is supported from ASA 9.4.1 onwards so i think that should be the best possible design requirement.

PBR:-

http://www.cisco.com/c/en/us/td/docs/security/asa/asa94/configuration/general/asa-general-cli/route-policy-based.html

Thanks and Regards,

Vibhor Amrodia

JRGC · ‎07-01-2015

Hi Amrodia,

Licensing should be considered separately in each if I neceisto set an active / active architecture using PBR?

Thanks for your comments.