ASA IKEv2 Multi-Peer VPN
ASA IKEv2 Multi-Peer VPN Overview High Availability VPN can be achieved on a Cisco ASA firewall using multi-peer crypto map, previously this feature was only supported on the ASA using…
ASA Dynamic VTI
Cisco Secure Firewall ASA version 9.19 introduces the Dynamic Virtual Tunnel Interfaces (DVTI) route-based VPN, which is an alternative to a policy-based VPN (crypto map). VTI is always up, unlike…
ASA Clustering (Spanned EtherChannel)
The Cisco ASA supports clustering feature to combine up to 16 appliances, each cluster unit actively forwards transit traffic (unlikely failover), acting as a single unit. Adjacent switches statelessly load…
ASA Active/Active
The Cisco ASA supports Active/Active failover mode, which allows both ASAs to pass traffic, allowing load balancing of network traffic. Active/Active Key Points Requires using multiple context mode. Refer to…
ASA Multiple Context
The Cisco ASA hardware appliances (not virtual appliances) supports partitioning the ASA into multiple virtual devices, known as security contexts. Each context acts as an independent device, with its own…
ASA Dual ISP using IP SLA
This post describes how to configure a Cisco ASA firewall for redundant/dual ISP connections, using the IP SLA and track features. IP SLA will be configured in conjunction with the…