Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
902
Views
0
Helpful
0
Replies

Call Home ASA and default route

WiLL-I-Am
Level 1
Level 1

‎11-09-2020 06:08 PM - edited ‎11-10-2020 07:06 AM

I just realized if you have two default routes,
one management only which has a separate routing tbl

and one Outside(data)

 

route management 0.0.0.0 0.0.0.0 x.x.x.x

route outside 0.0.0.0 0.0.0.0 x.x.x.x

 

even if I change the Administrative distance of the management to 2

any CLI software data transfer related command such as

crypto ca trustpool import ...

or

call-home test profile..

first uses the management interface and if there were no routes from there, then it goes over the routes on the outside interface, and the issue kicks in when your management ip space is an isolated ip space(doesn't have any routes to the outside world.)

I set the source-interface OUTSIDE under the call-home and that didn't change anything.

how should I tackle this without making the management route more specific(because that was the only solution I came up with)

0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card