how to create default route on multiple internet interfaces?

Omar Abdelhalim · ‎02-13-2013

Hi All,

I have Case: .... please see the diagram in the image below

1- ASA Firewall version 8.2.

2- Access Switches, and no core switch(s).

3- 2 ISPs with different Real IPs Ranges.

what i want to do:

1- Make the ASA Firewall as a Core Switch "create vlans and route betwwen vlans".

2- NAT Groups of Vlans to an ISP and others to the Other ISP.

3- Make Default to the first ISP, and also Default route to the other ISP.

4- Track the first default route, if down go to the other route.....

How can i do this?

Thanks

Omar

abcdrohan · ‎02-14-2013

Is this what you are looking for?

http://www.gomjabbar.com/2011/12/16/cisco-asa-sla-monitoring/

jocamare · ‎02-18-2013

What you are talking about is known as Policy-based routing or PBR and it's not supported by the ASA.

Andrew Phirsov · ‎02-18-2013

What he's talking about is just regular sla-monitoring (tracking static route) wich asa supports, not PBR as on ISR (with route-maps and etc.). So it easily can be done.

nkarthikeyan · ‎02-18-2013

Hi Omar,

You can create two default route with different metric value say you have two internet gateways 1.1.1.1 (isp1) and 2.2.2.2 (isp2).

You can have a default route like the below in you ASA

route outisde 0.0.0.0 0.0.0.0 1.1.1.1

route outside 0.0.0.0 0.0.0.0 2.2.2.2 2

If 1.1.1.1(ISP1) fails and not reachable it will take the secondary def route to reach the internet.

Hope this helps.

By

Karthik

Please do rate if the given information helps.

jocamare · ‎02-19-2013

It might be just me, but it sounds like PBR and SLA, still not supported.