Hi,
I have an issue with the configuration of an ASA firewall.
Currently the configuration is quite basic:
outside: 10.1.0.2/255.255.0.0 default route: 10.1.0.1
inside: 192.168.0.1/255.255.255.0 "outside" is configured to a first ISP.
I have a web server & smtp server an IP address 192.168.0.3 which receives public traffic from 10.1.0.3 thanks to a static NAT rule. Also when the smtp server sends an email it is "seen" on the outside est 10.1.0.3
Now I want to connect an "outside2" interface with network provided by an other ISP:
outside2: 10.3.0.2/255.255..0.0 router of secondary ISP: 10.3.0.1
Then I would configure an other server on 192.168.0.4 which would receives / send traffic from-to 10.3.0.4
The problem is that the default route is always the one of the first ISP. How do I tell ASA firewall that packets coming OUT from ip address
192.168.0.4 have a default gateway on interface outside2, route 10.3.0.1 ?On linux I would do this with the "mark" feature of iptables which can be used on routing tables. On a nortel alteon I would do this by creating a secondary gateway on a specific vlan On a sonicwall firewall it is possible to configure routes according to destination and SOURCE ip address.
Can Cisco do this kind of things?
Thank you for your help