Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1049
Views
0
Helpful
1
Replies

IPSEC VPN from router to ASA default route injection.

westie1981
Level 1
Level 1

‎06-15-2012 11:44 AM - edited ‎02-21-2020 06:08 PM

Hi,

I have a HA VPN built between two routers and an ASA.  The ACL for the VPN is as follows on the routers.

permit ip x.x.x.x any - to the internet

What I want to achieve is if the VPN is up/active then a 0.0.0.0 route is injected into the routing tables without putting a static route in.

I have tried this with reverse route injection on the crypto map but to no avail.

Can anyone enlighten me as to wether or not injecting routes into the routing table based on the IPSEC's availability is possible without having to put a static 0.0.0.0?

Thanks

Paul

Labels:
0 Helpful
1 Reply 1

Jennifer Halim
Cisco Employee
Cisco Employee

‎06-15-2012 08:08 PM

You can configure reverse route, and also redistribute static on your dynamic routing protocols.

Reverse route can only inject route if you are running dynamic routing protocols on your ASA, and configure redistribute static on your routing process.

0 Helpful
Customers Also Viewed These Support Documents