Solved: Default gateway for both MGMT and Outside interface

WiLL-I-Am · ‎11-05-2020

If I have some static routes on my ASA like this

route management 0.0.0.0 0.0.0.0 x.x.x.x

route outside 0.0.0.0 0.0.0.0 x.x.x.x

and say I don't have no NAT-ing in place, is it possible that some traffic coming from the inside interface choose to go out of management interface?

Rob Ingram · ‎11-05-2020

@WiLL-I-Am

There are 2 routing tables, management and data routing table. The management routing table is for traffic originating from the ASA and the data routing table is for traffic through the ASA.

I assume you've defined "management-only" under the management interface? In which case you confirm it's routing table using "show route management-only".

Traffic from inside interface will only be sent via the data routing table, not via the management routing table.

HTH

View solution in original post

balaji.bandi · ‎11-05-2020

It should your default route to outside - best to confrime what version of ASA code you are running ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

markus.bock · ‎11-05-2020

You can do policy based routing to regulate the traffic to the interface you want

Rob Ingram · ‎11-05-2020

@WiLL-I-Am

There are 2 routing tables, management and data routing table. The management routing table is for traffic originating from the ASA and the data routing table is for traffic through the ASA.

I assume you've defined "management-only" under the management interface? In which case you confirm it's routing table using "show route management-only".

Traffic from inside interface will only be sent via the data routing table, not via the management routing table.

HTH