Cisco ASA route all traffic from BGP interface to another interface

geoff · ‎02-16-2019

Hi,

Newly configured ASA 5585-x with BGP interface, how does one route all traffic to another interface with the advertised public IP's?

Or does one create VLAN on same BGP interface?

Many thanks in advance for your kind assistance.

Cheers

Geoff

balaji.bandi · ‎02-16-2019

Depends on where your BGP neighbour resides ? is the BGP neighbout inside interface then you need allow through ACL

if ASA is acting BGP peer then look at the below config :

https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/118050-config-bgp-00.html

if my understanding wrong, pelase explain more.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

geoff · ‎02-16-2019

Hi BB,

Sorry but article you have shared is not our issue.

We have a number of issues and are trying to methodically work our way through them.

The first issue is we have 2 outside interface 1 is BGP and the other is not BGP, we are currently are unable to execute the following successfully regardless of routes we configure;

# ping outside 8.8.8.8. --> This works

# ping bop-link 8.8.8.8 --> This does not work

Cheers

Geoff

Georg Pauwen · ‎02-17-2019

Hello,

use Packet Tracer to ping from an inside host (192.168.1.2 in the example below) to 8.8.8.8 and post the output:

packet-tracer input inside icmp 192.168.1.2 8 0 8.8.8.8 detailed

packet-tracer input bop-link icmp 8.8.8.8 0 0 192.168.1.2 detailed