Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,I add the below configuration in our ASA config so I can use the ISP2 to browse the internet using port 80 & 443 only.route ISP1 0 0 1.1.1.2 // Default route pointing to ISP1route ISP2 0 0 2.2.2.2 2 // Default route with Metric 2 via ISP2stati...
When running command sh ip nat trans got this error below. Incomplete ESP translations: 0 esp_conn=0x45542878, hanging off nat entry 0x49C38E18 1 esp_conn=0x45542858, hanging off nat entry 0x4AB462D0 2 esp_conn=0x455428F8, hanging off nat entry 0x4A8...
Just want also to ask, if this setup is possible?I want to route all the www traffic to pass in ISP2 (incoming & outgoing). What could be the best solution? I'm thinking using PBR in Default router to route all www traffic in Backup router but my pro...
Hello all,I need help in configuration of router. I want all www traffic from Area 1 to Area 2 (vice versa) will pass to IPComp Tunnel (see diagram below). All Compression Appliance were configured properly. I configure a policy based routing in each...
Hello,We just acquired our 2nd ISP. I need some advice on what's best configuration or setup to our internet connection. Our goal is to maximize first all the bandwidth of 2nd ISP then when it's full, it goes to1st ISP. Please see network diagram bel...
Hi Karsten,Thank you for your reply. I added the below command.access-list 110 permit ip 192.168.1.0 255.255.255.0 172.16.0.0 255.255.0.0nat (inside) 0 access-list 110But still i can't access the servers port 80 & 443.
Hi Harish,Thank you for your reply.I don't have a separate public IP for the DMZ servers.For your second recommendation, it didn't work. We have multiple servers with different IP's that needs http and https.The static nat limits only to 1 server, bu...
Hello,Thank you for posting this. It works fine as what the objective is. BUT I have some problem, USERS cannot access anymore the servers in DMZ using port 80 & 443. Could it be the static NAT? Or do I need to add a new ACL for ISP 2?I appreciate an...
