02-20-2008 08:53 AM - edited 03-03-2019 08:47 PM
Hello all, I have a 6509 with sup 720's. I have a vendor that wants to remove their router and go with a lan to lan VPN. The problem is I disconnect the router which goes to my 6509 and I need to change the route from the directly connected device to point to the firewall. I unplugged the router for a hour and when I do a "sh IP route" it still show 172.15.0.0 is directly connected, null0. Not sure if I can issue a "no ip route 172.15.0.0, null0"
02-20-2008 08:59 AM
Hi, that is a floating route that kicked in, someone put it there to make sure all trying to 172.15 goes in the bitbucket in lack of better route.
Once you got a better route for your vendor network, it will become preferred or more specific, so no issue and you don't need to do anything.
Hope this helps, please rate post if it does!
02-20-2008 09:19 AM
Paul
It seems to me that we need to know a bit more about this situation. What is the subnet/network that the vendor was using? Was it 172.15.0.0/16 or was it some part of that range? Is there any other part of that address range that you need to access?
That kind of route x.x.x.x connected to null0 is sometimes the result of a configured summary address. Or it might be a static route configured that way (I see this with some frequency in the configuration of BGP routers) so that the route is always in the routing table. If you could cut and paste that line out of show ip route and post the output we might understand a bit better how it got there.
You mention that a router for the vendor was removed. Was that router running a dynamic routing protocol with your switch? Or were routes statically configured?
If we understood the situation better we could give better advice.
HTH
Rick
02-20-2008 10:11 AM
The vendor has PCs and printers on the 172.15.0.0 that connect to our AS400. They state they need that entire range. I swore when I looked yesterday it had a C, now when I look it has a S, so it is static route.
S 172.15.0.0/16 is directly connected,Null0
02-20-2008 10:22 AM
Paul
Yes that does indicate that it is a static route. You should be able to remove it without much problem and then if you want to configure a new static route which points that network toward your firewall it should be easy to do so.
HTH
Rick
02-20-2008 10:27 AM
Rick, I'm guessing I would use "no ip route 172.15.0.0" do I need to add the null0 to the command?
02-20-2008 11:18 AM
Paul
You could use the complete line including the mask and the null0. Or you could use the address and the mask and it would work. If you try with only no ip route 172.15.0.0 you get an error indicating incomplete command.
HTH
Rick
02-20-2008 01:14 PM
Thanks Rick
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide