06-02-2020 01:24 PM
Hello I need some assistance with remote access VPN. Our current VPN client connects thru one ISP1 to our ASA. We would like the VPN client to use both our ISP's. How can i accomplish this design? Do i need to have another ASA pair?
ISP1 = 100Mb
ISP2 = 100Mb
ASA = 5525-x in HA pair mode
Two Internet routers
06-02-2020 01:48 PM
you can not use both ISP same time, you can use the failover mechanism - as ISP1 Link fails, you can use the ISP2 link for incoming connections.
06-03-2020 05:34 AM
06-03-2020 05:40 AM
It sounds like load sharing of remote access VPN is not possible with one ASA? What if i had a separate ASA pair and utilize another DNS connection point. example below..
ASA1 ==> Router1 ==> ISP1 ==> VPN1.com ==> _
==> Client1
ASA2 ==> Router2 ==> ISP2 ==> VPN2.com ==> -
06-03-2020 06:44 AM
Sure the one you mentioned is valid for 2 Domain terminating respective ASA Pair.
or you can also think Loadbalance or with DNS based LB.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: