Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
741
Views
5
Helpful
2
Replies

Cisco ASA 5510 with THREE internet connections

jrsysadmin
Level 1
Level 1

‎07-24-2014 03:25 PM - edited ‎03-03-2019 07:32 AM

Hello!

Our company currently uses a Cisco ASA 5510 and we have two internet connections working solid -- one (cable) as primary, one (DSL) as backup.  We also have a third internet connection that is dedicated to our SIP phones.  Currently we host our own in-house PBX, which connects to our internal network through a switch connected to the ASA, but has a second NIC connected directly to our third internet connection (a leased line with an SLA attached).  We would like to move to an external hosted PBX solution, but still keep the dedicated internet connection for our phones.

To clarify, we'd like to keep our primary and backup connections, and add a third active connection through which we would route all SIP traffic.

Is it possible for us to do that with the 5510?  If so, how would I go about setting that up?

Labels:
0 Helpful
2 Replies 2

lucentmoon
Level 1
Level 1

‎07-24-2014 03:40 PM

Unfortunately the ASA-5510 lacks certain routing features such as Policy-based Routing that would be an easy solution for what you want to accomplish.  Here is a good writeup of some other possible scenarious and solutions

https://supportforums.cisco.com/document/49756/asapix-load-balancing-between-two-isp-options

 

0 Helpful

rrusselljr
Level 1
Level 1

‎07-24-2014 10:08 PM

Greetings,

Cisco is very adamant about the ASA not being a router.  This means it will not do policy based routing nor such simple things as ICMP redirect.  There have been many years worth of requests for such simple feature updates but Cisco ignores them and uses the line that a firewall should be firewalling.  

That said, there are many excellent Internet load sharing devices out there.  The three that I have placed at many customer sites are:  Elfiq, Barracuda and XRoads.  Since Cisco doesn't want to be doing all-in-one stuff with their firewalls then the only choice is to use a dedicated appliance.  This is a much stronger solution than using a router and doing policy based routing since these types of appliances are specifically slated for Internet load sharing and do not have the speed limitations per cost of a Cisco router.  

It should be noted that I do recommend the ASA as the first choice in firewalls.  Good luck in your endeavors.  

Customers Also Viewed These Support Documents