Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
387
Views
1
Helpful
1
Replies

VPN Failover

hs08
VIP
VIP

‎01-31-2025 12:25 AM

I have cisco asa with 2 security context, each context connected to different internet connection. I also have VPN profile for each context.

In this condition when the internet connection on context-1 is down, we must switch the VPN profile in the client. Is there any way how we can use single VPN profile but can connect to 1st profile first then switch to the 2nd if 1st internet connection is down?

trying to create two multiple A record in the DNS but no helping.

Labels:
1 Reply 1

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎02-01-2025 01:08 AM

Hello @hs08 ,

the   ASA with  multiple contexts   =   ASA partitioning  in  logical devices.

VPN   profile   do  you mean  RA VPN,  Cisco  anyconnect   ?

if  so  each context needs to  be able to reach an   LDAPserver  or  Radius Server

making switchover for  RA  VPN between contexts is  not recommended.

you need also   dynamicDNS    and   each  user  has  to specify the AD  domain

so remote   user must  log  using:

user:      <ADdomain-name>\username

password: password

the  dyndNS  entry  will take  care of public IPv4 address change

DUO  can be used for  providing multifactor  authentication MFA

Hope to help

Giuseppe

 

0 Helpful
Customers Also Viewed These Support Documents