Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
894
Views
0
Helpful
6
Replies

Load balancing - two ISPs on 2 routers

kpradeep_venkata
Beginner
Beginner

‎02-08-2014 12:31 AM - edited ‎03-04-2019 10:17 PM

Hi,

We have two ISP links terminated on 2 different routers and two ASAs active/standby. If one link goes down automatically the second link takes the load.

Now we want to acheive the scenario like - have both the links utilized parallely and at same time with above link failover.

Can someone guide me..

Regards

Pradeep

Labels:
0 Helpful
6 Replies 6

paul driver
VIP Expert VIP Expert
VIP Expert

‎02-08-2014 01:46 AM

Hello
Do you mean the current setup is in an active/standby state on the fws.

This question would be best suited for the security/firewall forum -although with the exceptional experience on CSC am sure some else will be able to answer your question on here also much better than I can.

However my basic understanding to you query is that there are some necessary requirements prior to applying active/active fw mode

1) same hardware /iOS version / fw mode and correct licence ( I think unrestricted) on each fw
2) only works with multiple fw contexts
3) static routing only plus ISP addressing needs to be static also (basically no dynamic routing)

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080834058.shtml

Res
Paul

Sent from Cisco Technical Support iPad App


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

JohnTylerPearce
Rising star
Rising star
In response to paul driver

‎02-08-2014 08:13 AM

Kpradeep,

My first question is, are these "ISP Links" form the same ISP or different ISPs? Also, do you have network address space that is assigned to you, and if so, is this Provider Independent or Provider Assigned address space (IE Public Network).

Now that those question are over, Do both your two ISP Routers connected to your Core on the internal network? If so, you can also do load balancin gto pick ISP1 and or ISP2 at the same time, but with two different firewalls, you can run into asymetric routing issues, which can cause lots of firewall issues, due to the fact, that is you establish a TCP connection to Web Server 5.5.5.5 and then the traffic comes back to the other firewall, it's not going to have this stateful information saved (so to speak), and will drop the connection.

0 Helpful

kpradeep_venkata
Beginner
Beginner
In response to JohnTylerPearce

‎02-08-2014 10:14 PM

John,

Below are the answers..

1. Both are from different providers

2. Network address space assigned by provider

3. Right now i don't have any servers hosted in network which people access from outside. My only intention is to make both the internet links are utilized at same time(for browsing, and also if one link goes down the traffic should continue to go on the other link).

0 Helpful