Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

I apologize for this stupid question, but...

 

Question: How do I configure Management access to new WAN devices, hanging off a Prod switch, but that MUST NOT join or mingle with Prod network and have them route correctly across their own subnet?

I am going from a single Internet link to dual internet link.

New ASR, ASA and DMZ stack.
Only access to new devices is via Management interface via a management vlan that runs across the Prod network.
    requires a default gateway of the Management vlan.

 

The ASR has a WAN link to ISP and will get the default gateway (DG) via BGP.


The ASA and the DMZ should point to the ASR HSRP address for it's DG
Configuring this default gateway to HSRP causes me to loose the Management access.

I have seperate eigrp instance on new devices.

 

sMc
4 REPLIES

Hi Mc , For Management access

Hi Mc ,

 For Management access you can create VRF lite on your ASR , you can have deafult pointing to VRF. Data traffic from ASA and DMZ will not impacted .

 

HTH

Sandy

New Member

Sandy Thank you for the reply

Sandy

 

Thank you for the reply.

 

 

What about the 3750x and ASA5545x?

sMc

Hi Mc, On your ASA you can

Hi Mc,

 On your ASA you can use dedicated management interface for device administration , on your 3750x also you can create SVI and define it under specific VRF.

 

HTH

Sandy

75
Views
0
Helpful
4
Replies
CreatePlease login to create content