Configuring Backup Internet Connection on Firepower 2110

matacus · ‎05-02-2023

I have a Cisco Firepower 2110 and would like to have a backup internet connection. I don't want it to be a redundant system, I basically just want it as a fail safe in case our primary internet connection fails.

Example, to be clear: If Ethernet1/15 is internet provided by my current ISP, I would like to have a secondary ISP configured on Ethernet1/16 to be a backup if Ethernet1/15 goes down.

I've read conflicting information on whether or not this is possible of the Firepower 2110. Seems like a fairly simple task that it should be able to handle, but before I start paying for a secondary ISP, I'd like to be certain this is doable.

Is there a clear guide for how to accomplish this available somewhere?

Thanks!

Rob Ingram · ‎05-02-2023

@matacus you don't say whether you are using FDM or FMC. You will essentially use SLA monitor and track the primary ISP connection and failover to the secondary connection if the primary fails.

Here is a guide for either.

https://integratingit.wordpress.com/2020/08/14/ftd-dual-isp-failover/
https://integratingit.wordpress.com/2021/05/06/ftd-dual-isp-using-fdm/