Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a Firepower 2130 that homes all of my S2S VPN connections, as well as some AWS Direct Connect and Microsoft ExpressRoute links.The FW has static routes for VPN destinations, to push them over the appropriate outbound interface, and a route-map...
On my FPR2130 (7.2.5), I'm trying to troubleshoot a tunnel, trying to parse through a debug, and I'm getting messages that aren't detailed in what appear to be Cisco's guides to debugging:https://www.cisco.com/c/en/us/support/docs/ip/internet-key-exc...
Trying to get a config operational to support Avaya Remote Worker in our Azure tenant, behind an FTDv.The existing configuration has (2) interfaces, call then OUTSIDE and INSIDE.This existing config necessitates activating and configuring an addition...
Just resolved an issue between us and a partner, along with Cisco TAC (us) and Palo Alto TAC (them).Ended up being a mismatched PFS setting - we were 21, they were 20.How could I have discovered this sooner, before having to invoke TAC assistance to ...
So, in this particular configuration, I have an ASA connected to a cable modem, providing me a single static IP.Cable modem gateway - 1.1.1.2 /30ASA interface "outside" - 1.1.1.1 /30I have a DMZ setup, with a single device in it:ASA interface "dmz" -...
So, the PBR redistribution "worked" in the sense that the PBR displayed the route as learned from BGP, and redistributing THAT BGP route into OSPF was successful.Thank you to all for the discussion!
Thank you, and please forgive me - the route that I need to redistribute IS a PBR, but my routing table sees it as a BGP route.FWIW, I have two Microsoft ExpressRoute links, BGP between local AS 11111 and remote AS 33333, and when implemented, two st...
Started here:https://www.google.com/search?q=redistribute+pbr+into+ospfLooked at the various linked sources the AI response gave me.In the brief downtime I had, before I had to roll back, the PBR shows as:Routing entry for 192.168.253.0 255.255.255.0...
Not yet. The documentation I found indicates that I *CAN* inject a policy-based route into the OSPF environment, however, I was yet unable to get a downtime/approval to terminate the static route and try my solution. Soon!
OK, looks like I found another step that I missed, and that's defining the redistribution into OSPF.I found the redistribution rule for the statics, so, to define a rule for the PBR, I think I'll need to choose "BGP".Will test this later tonight.
