Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
296
Views
0
Helpful
1
Replies

Configuring 2 routes to same server in ASA version 9.2

moussa.malqui1
Level 1
Level 1

‎02-11-2017 01:59 PM - edited ‎03-12-2019 01:55 AM

I spent about 4 days to find solution to my architecture but without results, if some one here has already work with this solutions can help me and thanks in advance.

architecture description:

I wanna to get access to the server 10.240.1.28 from my site, in my site i have 2 LAN 10.30.60.0/24 and 10.30.70.0/24 each LAN has a VPN link to the second site to connect to the server

in my ASA i should put the routes to the server for that i define the first route : route tcvpn 10.240.1.28 255.255.255.255 10.240.20.1

but when i put the seconde route: route cacvpn 10.240.1.28 255.255.255.255 10.240.30.1, I get error this route is already exist

i use ASA version 9.2 so i can't use zoned ECMP or PBR solution, so what is the solution for this issue?

my architecture as following:

 

thanks in advance,

Regards,

MM

Labels:
0 Helpful
1 Reply 1

Philip D'Ath
VIP Alumni
VIP Alumni

‎02-12-2017 07:22 PM

Increase the administrative distance with:

route cacvpn 10.240.1.28 255.255.255.255 10.240.30.1 10

You need to make sure the traffic is symmetric.  Also note the failover will be very limited - it will only fail over if the ASA port actually goes down.  You really need to use a dynamic routing protocol, or just route all the traffic to one interface on "ISP Router 1" and let that router decide which VPN to use.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card