FTD RA WebVPN with VRF interface - Cisco Community

181

Views

3

Helpful

3

Replies

My FTD public facing interfaces are using "front door" VRF setups and I need to enable an interface for RA VPN. From what I have found the challenge is going to be leaking my internal routes to the "front door" VRF interface. I've seen examples using route-maps, dynamic routing protocols, redistribution etc.. so there seems to be several ways to accomplish this. Can anybody recommend a simple, straightforward option for doing this?

Thanks

3 Replies 3

Check one of the examples (see if that meets your requirement ?)

https://docs.defenseorchestrator.com/cdfmc/t-ravpn-vr-config-example.html

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

@tato386 "You cannot use interfaces that belong to user-defined virtual routers in policy-based site-to-site or remote access VPNs."

https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/management-center/device-config/770/management-center-device-config-77/routing-vrf.html#Cisco_Task.dita_3acfa2ab-105a-4f64-bdc0-43a2f20c1745

"supported only on..." is sometimes not the same as "won't work". is it worth giving it shot to see what happens?

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community