Remote Access VPN thru dual ISP

LDP · ‎06-02-2020

Hello I need some assistance with remote access VPN. Our current VPN client connects thru one ISP1 to our ASA. We would like the VPN client to use both our ISP's. How can i accomplish this design? Do i need to have another ASA pair?

ISP1 = 100Mb

ISP2 = 100Mb

ASA = 5525-x in HA pair mode

Two Internet routers

balaji.bandi · ‎06-02-2020

you can not use both ISP same time, you can use the failover mechanism - as ISP1 Link fails, you can use the ISP2 link for incoming connections.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

LDP · ‎06-03-2020

Thank you for the information. We already have our ISP's in Active/Active load sharing mode.

LDP · ‎06-03-2020

It sounds like load sharing of remote access VPN is not possible with one ASA? What if i had a separate ASA pair and utilize another DNS connection point. example below..

ASA1 ==> Router1 ==> ISP1 ==> VPN1.com ==> _

==> Client1

ASA2 ==> Router2 ==> ISP2 ==> VPN2.com ==> -

balaji.bandi · ‎06-03-2020

Sure the one you mentioned is valid for 2 Domain terminating respective ASA Pair.

or you can also think Loadbalance or with DNS based LB.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help