cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1657
Views
0
Helpful
1
Replies

Different networks redirection to SFR

Vladimir_rfgf
Level 1
Level 1

Hi All

I have 3 networks inside company 172.27.96.0/20 (1st), 172.27.11.0/24 (2nd) and 172.27.21.0/24 (3rd)

I also have ASA5525 running 9.7(1)4 and sfr running 6.2.0.6

ASA has inside interface 172.27.110.2/20

Traffic from 1st network goes through sfr to firepower (sfr policy), traffic from networks 2 and 3 goes through global policy and ASA does not redirect it to sfr.

My question is: how to configure asa to redirect traffic from networks 2 and 3 through sfr?

We started to change network topology and previously inside interface of ASA was used as default gateway, now defalut gateway is changed but still in network 172.27.96.0/20

1 Reply 1

yogdhanu
Cisco Employee
Cisco Employee

Hi

 

You can just create a ACL for the other 2 networks as well and call them in class-map to be matched and redirected.

 

Example config here.

https://www.cisco.com/c/en/us/support/docs/security/asa-firepower-services/118644-configure-firepower-00.html#anc12

 

Hope it helps,

Yogesh

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: