04-25-2013 08:38 PM
Is there a way on ASA to bring up site-to-site static crypto map vpn tunnel without generating interesting traffic? I want reverse route injection generate dynamic route before traffic starts flowing.
Solved! Go to Solution.
04-25-2013 11:38 PM
Roman,
Unless something chnaged recently RRI inserts routes without SAs present, i.e. they are static (unlike current default behavior on IOS from 12.4(9)T-I_think onwards).
But to answer the question, in more recent versions you can bring up the tunnel by using packet-tracer from CLI.
M.
edit: Enhancement request to introduce same functionality of RRI on ASA as on IOS:
http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsx67450
04-25-2013 11:38 PM
Roman,
Unless something chnaged recently RRI inserts routes without SAs present, i.e. they are static (unlike current default behavior on IOS from 12.4(9)T-I_think onwards).
But to answer the question, in more recent versions you can bring up the tunnel by using packet-tracer from CLI.
M.
edit: Enhancement request to introduce same functionality of RRI on ASA as on IOS:
http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsx67450
04-26-2013 02:15 PM
Ok, haven't realized that RRI inserts routes without SAs present, just tested on ASA and indeed that's the case. This is great, thanks!
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: