I have two ISP links terminated on two cisco 3845 routers from routers two Lan switches from two switches to its came to two ASA-5580-20 firewalls,
in that firewalls i created one DMZ and MZ zones,In that DMZ zone i have one application server and production server,For application server i given one public ip to that server that ip belongs to my ISP1 and production server i given one public IP that beongs to my ISP2.
Now the problem is when ever my ISP 1 is down my application server is not accessing to the public users and when ever my ISP-2 is down my production serveralso down
Plz let me know the automatic failover for this kind of problem
From what I understand this is expected. You are talking about the servers in the "trusted zone", right?
Could you clarify the issue that you're facing?
If you're trying to have the ASA load balace between the 2 ASAs, that is not possible. But if you're trying to have the ASA use one ISP when the other one is down, you can use SLA monitoring to do so. Here is a detailed document on how you can configure this:
"For application server i given one public ip to that server that ip belongs to my ISP1 and production server i given one public IP that beongs to my ISP2."
So two servers got one public IP each from each ISP. When ISP1 goes down, as the public users still try to access the App server using ISP1 public IP ( or DNS name that resolves to ISP1 public IP), the access attempt will fail. Same is the case with production server. You need some kind of Dynamic DNS option to change the IP address of the servers so that the DNS resolves to the address of live ISP.
Other option - as you have 2 ISPs and 2 routers, you can go with BGP (setup procedure is little long but worth it) ;-). That way you can achieve automatic failover.