Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
876
Views
0
Helpful
3
Replies

ASA 5515 Empty Routing Table

JEFF SPRADLING
Level 1
Level 1

‎07-23-2014 07:29 AM - edited ‎03-11-2019 09:31 PM

We have an odd issue which began by being unable to remotely connect to the ASA via ASDM or SSH.  SSH prompts for username and password, but returns 'access denied' even when using the correct password.  Logging into the console to troubleshoot, we find that the routing table is empty despite have multiple static routes in the config.  Re-adding a route helps not at all.  Attempt to ping something on the inside returns 'no route to host'.  Even the connected interfaces are not showing in the routing table.

Oddly, the firewall is functioning and passing traffic.  It has been rebooted at least once since this problem began.  No changes between the time this was working and when it started.

The firewall is an ASA-5515X running 8.4.6.

Anyone else seen this issue?

 

 

 

Labels:
0 Helpful
3 Replies 3

Jouni Forss
VIP Alumni
VIP Alumni

‎07-23-2014 07:52 AM

Hi,

 

Can't say that I have ever seen this happen.

 

Are you saying that the "show route" doesnt show any output?

 

Its kind of strange that a reboot would have not helped with this situation at all. Even more strange is the fact that you are saying that its passing traffic normally. Starts sounding like something you need help from Cisco TAC possibly.

 

Actually, now that I read your post, are you sure you are running 8.4(6). To my understanding your ASA model (the new X-series except for the ASA5585-X models) dont support that software.

 

Here is the list and it indeed does list that its not supported on your hardware

http://www.cisco.com/c/en/us/td/docs/security/asa/compatibility/asamatrx.html

 

So if for some odd reason you are actually running this software then I would probably suggest upgrading the software and considering the nature of the problem set a side a long enough maintanance window incase something doesnt go quite as expected.

 

Though I would assume you just mistaken the software level?

 

Other than that I would probably check the current configuration and an older backup on separate text documents and compare possible differences. For example using Microsoft Word or something else that can easily compare the 2 different texts for differences.

 

Hope this helps :)

 

- Jouni

0 Helpful

JEFF SPRADLING
Level 1
Level 1
In response to Jouni Forss

‎07-23-2014 08:15 AM

Thanks for the response.  The local tech on-site had the console cable plugged into the wrong (old) firewall :D.

 

Check layer 1 first still applies.....

 

 

0 Helpful

Jouni Forss
VIP Alumni
VIP Alumni
In response to JEFF SPRADLING

‎07-23-2014 08:17 AM

Hi,

 

Good to hear :)


I guess you could also call it a Layer 8 problem ;)

 

- Jouni

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card