06-02-2016 02:51 PM - edited 03-05-2019 04:09 AM
Hi Everyone,
We need to accomplish a routing behavior wherein ASA will route a particular traffic based on FQDN and/or the service (tcp, udp) its using to reach the FQDN. I have attached a diagram for reference. If this is not supported under ASA (alone), what solution do i need to accomplish this? Any ramifications on terms of routing if do this?
Solved! Go to Solution.
06-03-2016 06:28 PM
I am not so sure about the FQDN part but forwarding based on port numbers is achieved using Policy Based Routing and Cisco does support PBR on ASA with sufficiently recent OS.
HTH
Rick
06-03-2016 06:28 PM
I am not so sure about the FQDN part but forwarding based on port numbers is achieved using Policy Based Routing and Cisco does support PBR on ASA with sufficiently recent OS.
HTH
Rick
06-03-2016 06:28 PM
Hi Richard,
Thanks for the idea. It's working
here's the config applied
access-l ROUTETHIS ext per tcp host THEHOSTS obj FQDN eq 22
access-l ROUTETHIS ext per tcp host THEHOSTS obj FQDN eq 21
route-map ROUTETHIS per 10
match ip add ROUTETHIS
set ip next-hop ISP2_GW
int INSIDE
policy-route route-map ROUTETHIS
Thanks,
Jon
06-04-2016 10:46 AM
Jon
I am glad that my suggestion was helpful. Thank you for using the rating system to mark this question as answered. That will help other readers in the forum to identify discussions which have helpful information. And since you included what you did to configure PBR it will be especially helpful. +5 to you.
HTH
Rick
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide