Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
872
Views
0
Helpful
1
Replies

ASA message 'Routing failed to locate next-hop...'

acomiskey
Level 10
Level 10

‎12-08-2009 05:23 AM - edited ‎03-11-2019 09:46 AM

I have a remote site with a 2800 router. This has an MPLS connection and a dsl connection which will be used for backup/failover. Main site has a 5510 and a 7204. All devices running eigrp. MPLS connection terminates at 7204 inside of ASA.

When the MPLS connection at the remote site goes down, the EIGRP route for the remote network goes away. Traffic destined for this site should then travel towards the default gateway at the main site which is the ASA. The idea is that a VPN tunnel will then be created between the ASA and the remote 2800.

When testing this failover yesterday, the remote site started sending all traffic out the dsl path as expected. This brought the VPN tunnel up, but all traffic attempting to route from the main site to the ASA failed with the message 110003 Routing failed to locate next-hop...Any idea why this would happen? The ASA has a default route and also has the crypto acl's defined which should tell the ASA how to get to the remote network.

Labels:
0 Helpful
1 Reply 1

resoares
Cisco Employee
Cisco Employee

‎12-08-2009 09:44 AM

Hi,

It seems to be a NAT issue in your ASA. Can you check if all the parameters, like NAT 0 from HQ to remote (2800) are performed correctly ? Check this configuration on outside interface or other one that is doing this task.

Br,

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card