Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
410
Views
0
Helpful
2
Replies

ASA EIGRP question

Josh Sprang
Level 1
Level 1

‎04-09-2013 05:26 PM - edited ‎03-11-2019 06:26 PM

What is a good method for injecting routes into EIGRP on the outside of the ASA to advertise to my edge routers.

The senerio is I have two edge routers running bgp to diverse providers.  These edge routers will be peering EIGRP with an ASA A/S cluster and advertising a default route to them.   My network is a /21 of public space.  In order to load share inbound I want to annouce 4 /24s of my /21 to one provider and the other 4 /24s to my other provider.  The subnet between the ASAs and the edge is a /25.    So what I would like to do is set this up so the ASAs can inject the /24s into EIGRP.  So then I can use the subnets not in the /25 for NAT. 

I read some documents about using null0 routes on the ASA but in 9.0 that might have problems with the "route lookup" keyword. 

Is this do-able in a good design?  Or should I just use statics.... 

Labels:
0 Helpful
2 Replies 2

Julio Carvajal
VIP Alumni
VIP Alumni

‎04-09-2013 05:50 PM

Hello Josh,

For Flexibility purposes I would use EIGRP,

Now we got to remember that the ASA was not built as a dedicated routing appliance so it will not behave as good as we would like ( Routing speaking ) so we are going to be sort of limited with the things we can accomplish.

I would recommend you to use a redistribute-list ( with the only option being an ACL) so you can send the information to the right neigbhors,

Regards

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful

rizwanr74
Level 7
Level 7

‎04-09-2013 05:58 PM

Hi Josh,

Interior Gateway Routing Protocol (IGRP) always prefers longest match from advertised routes and the shorter match routes will become standby.

Easiest way to load-balance to two remote routers is to advertise both 4 /24s to remote routers under EIGRP processor however summarize one set of 4 /24s to a remote router(A) that you want to be in standby, so that the second remote router(B) will become a primary path for that particular 4 /24s. Likewise do that same for other 4 /24s on remote router(B) so that router(A) become primary for your other set of 4 /24s.

Thanks

Rizwan Rafeek

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card