cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
4366
Views
0
Helpful
4
Replies

IP SLA tracking with two destination

kandasamy03
Level 1
Level 1

Hi,

Is it possible to track two destination IP address via IP SLA in Cisco ASA 8.4?

Below the current setup with configuration. I would like to add one more Public IP address(8.8.8.8) to track. in case both the destination IP address is not reachable then only the traffic should go via ISP2.

Cisco ASA(192.168.1.1)   ==> SW ==>(192.168.1.2) Internet GW1 ----- ISP1

                                                          (192.168.1.3)Internet GW2 ----- ISP2

route outside 4.2.2.2 255.255.255.255 192.168.1.2

route outside 8.8.8.8 255.255.255.255 192.168.1.2

route outside 0.0.0.0 0.0.0.0 192.168.1.2 track 100

route outside 0.0.0.0 0.0.0.0 192.168.1.3 250

sla monitor 10

type echo protocol ipIcmpEcho 4.2.2.2 interface outside

num-packets 5

frequency 5

sla monitor schedule 10 life forever start-time now

track 100 rtr 10 reachability

Thanks in Advance

2 Accepted Solutions

Accepted Solutions

Hello,

Okay, that cannot happen, SLA will work only by associating a track object to a route ( so only one track device is required)

Regards

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

View solution in original post

Hi,

if the implementation was the same on ASA as it is on routers and  switches then it would be  doable with the boolean list feature.

http://www.cisco.com/en/US/docs/ios/12_2t/12_2t15/feature/guide/fthsrptk.html

I just did a quick search and it seems it is not a feature available on the ASA so as Julio stated it won't be possible.

Regards.

Alain

Don't forget to rate helpful posts.

View solution in original post

4 Replies 4

Julio Carvajal
VIP Alumni
VIP Alumni

Hello,

It is possible to do this,

Configuration looks good. You do not need to have this so you can remove it to make it clear.

route outside 4.2.2.2 255.255.255.255 192.168.1.2

route outside 8.8.8.8 255.255.255.255 192.168.1.2

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

Hi, Thanks for your reply,  I want to monitor two internet address, if both address not reachable then only tracking should happen.. please advise

Hello,

Okay, that cannot happen, SLA will work only by associating a track object to a route ( so only one track device is required)

Regards

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

Hi,

if the implementation was the same on ASA as it is on routers and  switches then it would be  doable with the boolean list feature.

http://www.cisco.com/en/US/docs/ios/12_2t/12_2t15/feature/guide/fthsrptk.html

I just did a quick search and it seems it is not a feature available on the ASA so as Julio stated it won't be possible.

Regards.

Alain

Don't forget to rate helpful posts.
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: