Hi Georg,

    Thanks for your reply, that is correct. Some how I deleted the outside route when I was sanitizing it, so good observation.

The only outside route I have currently is "route outside 0.0.0.0 0.0.0.0 10.0.0.1 1" which is normally just above the inside routes.

So for your configuration changes, I just need to add that information and the additional outside route, I don't need to change anything else existing in the configuration?

Yes I thought it needed another NAT statement. So I was able to add most of the commands Georg suggested above plus the NAT statement, but I'm getting an error when trying to add a new route for outside2. Regardless of which IP address I try to use.

These are the existing routes.

Try and add the route like this:

route outside2 0.0.0.0 0.0.0.0 192.168.1.1 10

only one default route with same AD can add

change the AD 

route ............. 2<-this add and check 

Well 10 or 2 works, but when I switch over to VLAN 20 or 50, it is still showing the same public IP as the other VLANs, so I don't think it is working. They should be different public IPs if it is routing 20 and 50 to outside2. Any ideas?

Latest config with changes above is attached.

First clear xlate and conn table

second try connect from these vlan again 

Well it still seems to be operating in a fail-over setup, which is not what I wanted it to do.

I tried clearing the xlate, connections along with my cache and flushing my DNS this morning, but nothing made a difference, it still showed connection 1/1 being used.

When I went to my ASA and unplugged connection 1 (gigabit1/1), after 3-4 minutes it finally switched over to ISP2 (gigabit1/2) and was showing that public IP address when I go to what is my ip? As soon as I plugged gigabit1/1 back in it switched back over to that connection.

I don't really understand that since as far as I know I don't have anything in my configuration that is tracking the health of the connections, unless the ASA automatically does that.

Hello,

you have applied the route map to the outside interface, it needs to be applied to the inside:

interface GigabitEthernet1/2
description "WAN Connection to IFWA-40"
nameif outside2
security-level 0
ip address 10.1.1.2 255.255.255.0
--> no policy-route route-map ISP2
!
interface GigabitEthernet1/3
description "LAN Connection to Cisco 3650 Switch"
nameif inside
security-level 100
ip address 10.5.1.2 255.255.255.0

-->  policy-route route-map ISP2

Hmmm well it seems I can't win, now it is doing the opposite, it routing everything over gigabit1/2 (ISP2). I've been testing with VLAN10, 20 and 50 with a different web browser to find the public IP, so its defiantly not a caching issue or anything.

I also couldn't get the ASA to accept an extended ACL for that route-map policy, it gets an error.

The only other access-list in there is an extended ACL for the firepower module.