Dear all!
i've two cisco asa5510 with 4 FastEthernet interfaces each.
They are connected as below:
Firewall01 Firewall02
Fa0/0 - ISP1 (offer VPN Services to Public IP address) Fa0/0 - ISP2 (offer VPN Services to Public IP address)
Fa0/1 - Lan connection Fa0/1 - Lan Connection
Fa0/2 - DataLink to Customer01 Fa0/2 - DataLink to customer02
Fa0/3 - Datalink to customer03 Fa0/3 - Datalink to Customer04
to three different ISP each of them! The 4rth interface of each of them, is connected to internal LAN network. Both Firewalls, offers VPN Services to ISP connections on Fa0/0
How can i achieve high availability for this scneario?
is this possible to implement some HighAvailability and to offer the actual services to each of them, in case that the other firewall fail?
What about using subintefaces? can i connect bothe ISP and Customers links on one or each of them, in case that firewall01 fails, all the services to be online on firewall02?
What about if i use virtual contexts? in this case, i'll lose VPN services, right?
Please, give me your suggestions!
Regards!