Is it possible to create a neighbor relationship between an ASA and a router on the external interface? I would like to have the ASA receive the default route from our external DS3 router so that I can reroute to our secondary provider should an outage occur.
I worked on this last night for a couple of hours with no luck and can't find any documentation showing the solution. I went as far as statically configuring neighbor relationships, allowing eigrp on the ACL attached to the Outside interface etc and had no luck. The ASA does not appear to send any EIGRP traffic out the external interface. Any suggestions? Anyone done this?
EIGRP hello packets are sent as multicast packets. If an EIGRP neighbor is located across a nonbroadcast network, such as a tunnel, you must manually define that neighbor. When you manually define an EIGRP neighbor, hello packets are sent to that neighbor as unicast messages.
Refer the following url for Configuring EIGRP on the Cisco Adaptive Security Appliance (ASA):
Thanks for your reply. Unfortunately, like I stated in the original post I have already tried manually configuring the neighbor relationship and it is not working. Do you know for certain it will work? Do the minor revs of v8 make a difference? I am currently on 8.02.
What pieces would you like to see? It is a fairly sizable production environment. Assume that I am very competent and experienced and simple mistakes won't be made. The main thing I am trying find out is whether or not anyone has actually seen it work and if so, were there any special things that needed to get done to make it work properly. Internally, EIGRP is working well. The network statements are correct as are the neighbor statements.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :