Is it possible to host Client VPN (anyconnect) an a routed IP (not the WAN IP)

[Dieselboy]

I have an ASA 5516 that uses a /31 IP for internet access. On top of this, the ISP routes a /30 block to the ASA 5516.

The problem I have is that there is a routing issue getting to the ASA 5516 so the latency is high. This poses an issue with remote access VPN because the Anyconnect client is targeting the ASA 5516 directly.

Could I use one of the /30 IPs to host anyconnect from the ASA? As far as I can tell, it's not possible - so I wanted to check here with you guys in case it could actually be done.

The ISP is aware of the route issue but is having issues getting it resolved with their upstream carriers. They suggested to issue me a new IP. But that is a risk as the site is unmanned, so looking at alternatives.

[icecream-guy]

maybe secondary IP on the outside interface?

are you paying for this service?  then demand the ISP fix their issue.

if you have to change IP, find a new ISP if possible.

[Otanx]

That is a limitation to the ASA that as far as I know continues in FTD. The only work around I have heard is to use multi context mode, but that is harder, and more risk than just changing the IP.

-Otanx