07-25-2014 04:00 AM - edited 03-07-2019 08:11 PM
Hi All,
I'm looking to connect a Cisco ASA 5525 firewall that will provide primary internet access to our core network. I want the ASA to learn routes from our core and advertise a default route by OSPF.
I'm happy with the basic configuration here but I'm wondering if there is any advatange to have the ASA sitting in a non-backbone area instead of area 0. Are there any best practises with this scenario or is connecting the ASA to area 0 perfectly acceptable?
Thanks,
Solved! Go to Solution.
07-25-2014 05:04 AM
Hi Will,
I Suggest you to keep your ASA in Area 0, instead of non-backbone area.
I assume your asa will be having one end connected with LAN/Core LAN and other end with the public segment right.....
Then you can have the basic configuration set on ASA, as simple as possible...
router ospf 1
router-id 1.1.1.1.
network 1.1.1.0 255.255.255.0 area 0
timers spf 1 10
log-adj-changes
!
You will be running the OSPF between your edge router and asa....
Please correct me if my understanding is wrong.
Regards
Karthik
07-25-2014 05:04 AM
Hi Will,
I Suggest you to keep your ASA in Area 0, instead of non-backbone area.
I assume your asa will be having one end connected with LAN/Core LAN and other end with the public segment right.....
Then you can have the basic configuration set on ASA, as simple as possible...
router ospf 1
router-id 1.1.1.1.
network 1.1.1.0 255.255.255.0 area 0
timers spf 1 10
log-adj-changes
!
You will be running the OSPF between your edge router and asa....
Please correct me if my understanding is wrong.
Regards
Karthik
08-01-2014 07:37 AM
Thanks Karthik.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide