Simply create two vlans, each dedicated to the specific ISP. !Vlan 998name ISP-1!vlan 999name ISP-2!Then assign the interfaces with a vlan corresponding to the ISP. Lets say you have two ASAs or FTDs that you need to assign one interface with IPS 1 a...
Another reason for using Permanent in the static route is for IPSLA to perform a static route manipulation. Imagine you have 2 possible routes where one is proffered and the other one is a backup. You then create 2 static routes, where the least opti...
Thank you kindly for your help, I had the same issue and steps outlined resolved it. Make sure to use :w to write in vi and :q to quit in order not to create multiple instances in vi editor. Cheers
This can be done by allowing access to the device via the public (outside) access. Go to System Settings> Management Access and select Data Interfaces tab. Click on "+" and select "outside" interface and type of access (HTTPS/HTTP). Then add public I...
I am working on testing the FTD and decided to create a VPN profile without Split-Tunnel to test URL Filter etc. In order to allow the VPN subnet to send all traffic via the tunnel I had simply added Dynamic NAT. See the attachment with NAT rule crea...
