ASA 842 De Chinglu SLA configuration test

I. Overview:

It is estimated that the actual work will often encounter with Asa two ISP line, for example, Telecom and Netcom, and there is not enough budget to buy load balancing equipment, but want to achieve link load sharing and automatic switching, from telecommunications to traffic, from the telecommunications line back, from Netcom to the flow of traffic from the Netcom line back, When one of the lines fails, all traffic never goes off the fault line.

Two. Basic ideas:

A. Using OSPF to simulate carrier networks, mainly to avoid adding routes manually

B. By adding a default route to the telecommunications line, monitoring the telecommunications line gateway, and the high metric default route to the Netcom line, to achieve:

----Telecom to the flow of telecommunications go back (need C manual configuration netcom static route matching)

----Telecom link failure, take the Netcom line

C. By adding Netcom's static route to the Netcom line, and monitoring the Gateway of Netcom, realize:

----Netcom to go back to the traffic Netcom

----The default route of the telecommunication line when the link of the netcom fails

D. For static NAT, the actual environment can be accessed only when two ISP lines are normal

E. test environment, to achieve static NAT when a line fails, can also be accessed at the same time, the implementation of the method is:

---ASA two external interfaces configured with two static NAT

---ASA two connected ISP routers publish a network segment of another ISP Nat, and set the metric to be larger than the OSPF default

Three. Test topology: