07-07-2012 05:08 AM - edited 03-11-2019 04:27 PM
Hi All,
I have ASA5585 Firewall between my WAN Cloud and LAN Network. I plan to configure Layer 3 Vlan Interfaces inside FW and it would be Layer 3 gateway for some of Subnets. Layer 3 VLAN Interfaces are planned to be dual stack containing both IPv4 and IPv6 Address stack.
I plan to configure 6 to 4 Tunnel with my Hub Site where we have native Ipv6 awareness. One tunnel end point would be ASA and the other endpoint would be Hub site WAN Router/L3 Switch. So IPv6 traffic hitting to vlan interfaces on ASA would be policy checked and routed over tunnel interface to Hub Site.
Please help me with 6to4 Tunnel manual tunnel configuration on ASA. I have configured such tunnel on L3 Switch or Router with following config.
Int tunnel xyz
ipv6 address <ipv6 address>
ipv6 enable
tunnel source <loopback address of my L3 Switch>
tunnel destination <loopback address of my hus site L3 Switch/Router>
tunnel mode ipv6ip
end
I need to implement something similar in ASA. Please guide me how can I do that?
Regards
Krutarth bhatt
07-07-2012 05:17 AM
I also need to configure Multicast tunnel in ASA. Just similar to above question, my vlan interface inside ASA would be part of PIM and I plan to put default mcast route pointing to tunnel interface on ASA. So multicast traffic going to Hub Site would be hitting vlan interface on ASA and would be routed to hub site via tunnel interface.
Generally I am doing in L3 Switch as follows.
int tunnel xyz
ip address
ip pim sparce mode
tunnel source
tunnel destination
end
I would like to config something similar to above in ASA. Please suggest.
Krutarth
07-07-2012 10:10 AM
The ASA doesn't support these kind of tunnels. You have to put a router in front of the ASA or into one of your DMZ to build these tunnels. The tunneled IPv6 can then be processed by the ASA.
Sent from Cisco Technical Support iPad App
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide