Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

RemoteAccess IP's not propagating in OSPF

Hi,

I have a VPN-only setup with ASA5520s running Active/Standby failover. On the inside interface I have an OSPF setup with the ASA (both area 0). The ASA learns routes from the router. However, the router doesn't learn any routes from the ASA for RA clients. I've configured a pool of IPs which appear in the ASA routing table to come from the external interface and are /32s but those routes don't seem to propagate via OSPF to the inside router. I did try to redistribute the static into ospf on the ASA but to no avail.

Is there anything special I need to do to get these routes to propagate via OSPF?

Casey

3 REPLIES
Silver

Re: RemoteAccess IP's not propagating in OSPF

Post the running config of your device.

Re: RemoteAccess IP's not propagating in OSPF

I can think of vpn pool network advertizement in asa ospf process, asa ospf does not know about vpn pool network unless you tell it to advertize it. Advertize the vpn network in your ospf process asa inside interface, can you try that please.

e.i, assume vpn pool network is 10.20.20.0/24

router ospf

log-adj-changes

area

network 10.20.20.0 255.255.255.0 area

Gold

Re: RemoteAccess IP's not propagating in OSPF

is RRI enabled on your dynamic crypto map?

crypto dynamic-map DYNAMIC 10 set reverse-route

and make sure to redistribute static routes into ospf.

434
Views
4
Helpful
3
Replies
CreatePlease login to create content