ASA redistribution using route-map

tomek0001 · ‎02-26-2009

Hello,

I'm trying to accomplish redistribution between two ospf processes using a route-map with an access-list on an ASA.

Can't seem to get it working. Does anyone know if this is possible or if i have something messed up? See below:

redistribute ospf 175 metric-type 1 subnets tag 10457 route-map OSPF175-OSPF100-RMAP

route-map OSPF175-OSPF100-RMAP permit 10

match ip address OSPF175-OSPF100-ACL

access-list OSPF175-OSPF100-ACL remark Used for redistribution

access-list OSPF175-OSPF100-ACL standard permit host x.y.z.0

access-list OSPF175-OSPF100-ACL standard permit host 0.0.0.0

Thank you,

Tom

adamclarkuk_2 · ‎02-26-2009

Hi Tom

This worked for me, here is my setup

FW0---->(OSPF process 1)FW1(OSPF process 2)---->FW2

FW0 is passing a /32 (192.168.10.1) via OSPF to FW1 process 1 who then redistributes into OSPF process 2 and passes the route onto FW2.

FW1 Config

route-map eigrp_redis permit 10

match ip address eigrp_redist

access-list eigrp_redist standard permit host 192.168.10.1

router ospf 1

network 192.168.1.0 255.255.255.252 area 0

log-adj-changes

!

router ospf 2

network 192.168.2.0 255.255.255.252 area 0

log-adj-changes

redistribute ospf 1 metric-type 1 subnets tag 10457 route-map eigrp_redis

Routing table for FW1

O E1 192.168.10.1 255.255.255.255 [110/11] via 192.168.1.1, 0:04:28, inside

C 192.168.1.0 255.255.255.252 is directly connected, inside

C 192.168.2.0 255.255.255.252 is directly connected, ouside

Routing table for FW2

O E1 192.168.10.1 255.255.255.255 [110/21] via 192.168.2.2, 0:01:34, inside

C 192.168.2.0 255.255.255.252 is directly connected, inside

I am running code 7.2

FW1# sh ver

Cisco PIX Security Appliance Software Version 7.2(2)19

How are your /32 routes begin learned at the point of redistribution ?