Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
541
Views
0
Helpful
1
Replies

SLA Monitor with Dual NAT on ASA

parvezahmad90
Level 1
Level 1

‎06-29-2013 12:25 PM - edited ‎03-11-2019 07:05 PM

Hello,

SLA monitor configured on ASA for two ISPs.

As ISP1/ISP1 Router is up and running so inside users are translating with Public IP address of ISP1 that is 110.2.2.0/28 subnet.

As soon as ISP1/ ISP1 Router goes down then inside users will use ISP2 as per the default route configured in SLA monitor.

Since ISP2 has diffrent public range (210.1.1.0/28) from ISP1(110.2.2.0/28)

When the users traffic will pass through ISP2 , for that do we need to create two network objects for user subnets; One natted object for ISP1 and another natted object for ISP2 with their Public IP address?

Regards,

Labels:
0 Helpful
1 Reply 1

Jouni Forss
VIP Alumni
VIP Alumni

‎06-29-2013 12:35 PM

Hi,

If you need to configure Basic Dynamic PAT for your LAN networks with 2 ISPs then you could configure something like this

object-group network DEFAULT-PAT-SOURCE

network-object 10.10.10.0 255.255.255.0

network-object 10.10.20.0 255.255.255.0

nat (any,ISP-1) after-auto source dynamic DEFAULT-PAT-SOURCE interface

nat (any,ISP-2) after-auto source dynamic DEFAULT-PAT-SOURCE interface

The above just gives an example what the configuration could look like with 2 LAN networks and Dynamic PAT configured for both ISP interface-

The SLA monitor naturally handles which ISP link is used as you say.

Hopefully this helps

Please do remember to mark the reply as the correct answer if it answered your question.

Ask more if needed.

- Jouni

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card