Iam,
your not going to get load-balancing from the ASA. In the past a lot of
people including myself tried loadbalancing off of the ASA but it was
impossible without shutting off the stateful inspect of the firewall which
render the ASA to a router without a true since of the firewall features.
My suggestion would be to use the HQ1 and HQ2 routers to utilize both of
your SP links "not knowing if the 200 branches of each SP are the same" I'm
assuming that the branches are the same on both SP clouds?
For example: you could use HQ2 for outgoing traffic and HQ1 as incoming
traffic therefor utilizing both SP's at the same time and having failover
to a single SP if one should fail.
Or better yet do OER/PfR (just kidding)
JS
On Mon, Nov 5, 2012 at 7:21 AM, Iam Here <go_soon2010_at_hotmail.com> wrote:
> |---HQ1 -------SP -------- To 200 branches
> ASA -------
> |---HQ2-------SP ---------To 200 branches
>
>
> My customer has HQ site with 200 branches,
> In the HQ there is an ASA which connected to 2 HQ routers and each HQ
> router connected to the SP with one link only (default GW) and the SP
> router is connected to the 200 Branches .
> I need to configure LoadBalancing from the HQ site to all the branches but
> I don't know what is the best method should i use (SLA or BGP between HQ
> and SP or DMVPN )
> Pls addvise
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Mon Nov 05 2012 - 08:30:00 ART
This archive was generated by hypermail 2.2.0 : Sat Dec 01 2012 - 07:27:50 ART