10-17-2016 03:17 AM - edited 03-12-2019 01:24 AM
Good morning everyone, I have a firewall cisco asa 5506, version 9.3 (2) 2.
I need to drive internet traffic to a link and traffic voip to another link. It is possible? how can I do it?
Thank you.
10-17-2016 03:35 AM
Yes it is possible you can configure two interface one for internet and one for voip
10-17-2016 03:48 AM
How can I do It?
10-17-2016 04:16 AM
Kindly refer
http://www.cisco.com/c/en/us/td/docs/security/asa/asa82/configuration/guide/config/intrface.html
10-17-2016 05:10 AM
Good morning, interfaces are already configured.
I need to know how to do the SIP traffic out by a link and other traffics on the other link.
topology:
GIGABITETHERNET 1/1: OUTSIDE1
GIGABITETHERNET 1/2: OUTSIDE2
GIGABITETHERNET 1/5: INSIDE
LAN 10.0.0.0/19
IP SERVER SIP: 10.0.1.120
must be this:
TRAFFIC SIP -> OUTSIDE2
OTHER SERVICES -> OUTSIDE1
10-17-2016 05:49 AM
You will need Policy Based Routing for this
access-list SIP_PBR extended permit udp any any eq sip
access-list SIP_PBR extended permit udp any eq sip any
!
route-map SIP_PBR_RMAP permit 10
match ip address SIP_PBR
set ip next-hop <OUTSIDE2 Gateway>
10-17-2016 01:30 PM
This is a nice suggestion. Unfortunately PBR for ASA was introduced in version 9.4 and the original post identifies this ASA as 5506, version 9.3 (2) 2. So a code upgrade would be required to get PBR to work.
HTH
Rick
10-17-2016 02:45 PM
Forgot about that :)
10-17-2016 03:08 PM
Pesky detail :(
I believe that your suggestion would be the optimum solution but there is the detail of support in what version.
HTH
Rick
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide