Re: Cant get switch to see BPDU'S via asa firewall

carl_townshend · ‎03-15-2007

Hi all, can someone help. I have a setup, using a asa in transparent mode, switch A goes into inside of asa, then switch 2 plugs into outside of ASA, I have created an allow all rule, BUT i cant see the bpdu's coming through to the other switch, can anyone please help?

cheers

Carl

Amit Singh · ‎03-15-2007

Carl,

Configure the following on your ASA:

hostname(config)# access-list ETHER ethertype permit bpdu

hostname(config)# access-group ETHER in interface inside

hostname(config)# access-group ETHER in interface outside

HTH,Please rate if it does.

-amit singh

carl_townshend · ‎03-15-2007

Hi Amit, I have tried this and it still doesnt seem to work, any ideas why ?

carl_townshend · ‎03-16-2007

Cab anyone help me on this?

cheers

Carl

adimakmur · ‎09-17-2007

Hi Carl,

Can you share your experience how you solve the bpdu issue on the ASA?

Right now, I'm having the same problem. I have tried using the Ethertype access-list to allow the bpdu, but still cannot. The hit-count on the access-list is not increased.

Thanks a lot for your help.

Regards,

-Adi-