We are shortly upgrading some of our inter-site links from 1Gb to 10Gb. As part of that work I will be changing the reference bandwidth on the core switches from 2Gb to 100Gb (giving a bit of headroom over the 10GB circuits as we already have some 20GB links).
This is nice and easy all I have to do is enter the OSPF process and type auto-cost reference-bandwidth 100 Gbps.
However we also have a large number of ASA firewalls running as part of OSPF - these all seem to be using a reference bandwidth of 100Mbps. as you can see in the screen extract below PEG-VFW01/peg-dfg-vfw01# sh ospf
Routing Process "ospf 1" with ID 172.31.22.1 Start time: 17:03:37.230, Time elapsed: 6w1d (lines omitted) Reference bandwidth unit is 100 mbps
How can I change the reference bandwidth to 100Gbps. Looking at the cisco documentation it appears you can do that using OSPF V3 but as I am not running IPV6 I don't want or need to enable that.
An update to this one. After posting the question here, I also put it to my service company - who passed it onto TAC.
It is not possible to change it. Even on the latest ASA firmware (9.8) the limitation is still there. Obviously cisco don't expect firewalls to make OSPF routing decisions based on high bandwidth costs.
You could do it manually but that will be an admin pain....
IntroductionComponentsIBM MaaS360 ConfigurationISE ConfigurationOnboard and validating access from Windows ClientEnrolling Windows 10 against IBM MaaS 360
Cisco Identity Services Engine (ISE) gives you intelligent Integrated protectio...
This video provides the steps to configure the Cisco Threat Response (CTR) and ESA Integration.
This is live on the portal:https://video.cisco.com/video/6159336218001
And on YouTube:https://www.youtube.com/watch?v=UCKIdx5rdFg
I need to migrate from C170 to C190 and have already match to the same Firmware Version. I have a question. Is there any method that can export and import the configuration file instead of form cluster ?
This AMA will serve as the Q&A for the Cisco Live Digital breakout DGTL-BRKSEC-1011 - "A Challenger Appears: Defending Mailboxes in the Cloud" which covers a brand new product which will be announced during the event: Cloud Mailbox Defense.
I've fixed this before but now I'm running into a different type of an issue. My firewall isn't booting to the image so I have to keep reloading the image onto the ASA. Any help would be appreciated. Also my Config-Register is set to 0x1. As of right now,...