Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
666
Views
0
Helpful
1
Replies

Separate traffic by protocol - multiple internet interfaces

gregbeifuss
Level 1
Level 1

‎04-10-2012 01:12 PM - edited ‎03-11-2019 03:52 PM

Hello,

I would like to connect a second ISP link to our ASA 5510 to solely serve http traffic from our organization's employees (ie. web surfing). We currently have all employee traffic and two site-to-site VPN tunnels connecting to the internet from this firewall. I want to keep the tunnels as currently configured on the existing connection and split out http/https traffic from our staff onto a less costly link.

How would I go about doing this?

Thanks!
Greg

Labels:
0 Helpful
1 Reply 1

Dennis Mink
VIP Alumni
VIP Alumni

‎04-10-2012 06:56 PM

Greg,

Normally you could use Policy based routing, but the ASA does not support this (yet), if you have a router in front of the ASA (so between the ISPs and your ASA), you could use PBR to split traffic between providers.

check out this post:

https://supportforums.cisco.com/docs/DOC-6069    it contains a discussion around using NAT to engineer what you are trying to achieve.

please rate if usefull.

Dennis

Please remember to rate useful posts, by clicking on the stars below.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card