11-03-2017 01:19 AM - edited 03-05-2019 09:25 AM
I have an ASA 5508X with the following configuration:
Those are routes towards my LAN (ASA port 1):
route inside 192.168.20.0 255.255.255.0 172.1.1.6 1
route inside 192.168.21.0 255.255.255.0 172.1.1.6 1
route inside 192.168.22.0 255.255.255.0 172.1.1.6 1
This is the link to my Internet Router than goes to ISP 1, from ASA port 2:
route outside 0.0.0.0 0.0.0.0 172.2.1.1 1
Basically, all current VLANs go out through the router and to ISP 1.
I have a secondary ISP (172.3.1.1) and I configured the correct settings on the ASA port 3 (interface outside3)
I created a new VLAN 192.168.23.0 .
I want to route the new VLAN to the new ISP.
Is this the correct approach :
route inside 192.168.23.0 255.255.255.0 172.1.1.6 1
route outside2 192.168.23.0 255.255.255.0 172.3.1.1 1
11-03-2017 02:14 AM
Hello,
the routing looks good to me. Is it working, or are you running into a problem ?
11-03-2017 02:21 AM - edited 11-03-2017 02:34 AM
It's just planning. I need to implement this in the near future.
I was wondering if the 192.168.23.0 route will be correctly considered since the 0.0.0.0 one exists with the same metric.
11-03-2017 02:18 AM
If you want to send traffic that is coming from a particular vlan over a specific ISP, then you have to configure policy-based-routing (PBR) for that:
11-03-2017 02:35 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide