Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
717
Views
0
Helpful
0
Replies

VPN advertised route persist Cisco ASA 5525 9.8(4)

nguyentu.tomas1
Level 1
Level 1

‎08-26-2020 08:10 AM

Hi,

I have a problem as when users connected to remote VPN and trying reach some internal IP address the route point it to outside interface as the IPsec VPN route still there even the tunnel is not up and static route also in there . Per my founding it's seems like bug but tunnel is ikev1 not ikev2 as described in this link.

 

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvu69405

 

Route

 

vml-fw1# show route 152.146.0.0

Routing entry for 152.146.0.0 255.255.0.0, 4 known subnets
Attached (1 connections)
V 152.146.0.0 255.255.0.0 connected by VPN (advertised), outside
S 152.146.4.0 255.255.255.0 [1/0] via 10.240.82.1, inside
S 152.146.35.28 255.255.255.255 [1/0] via 10.240.82.1, inside
D 152.146.90.0 255.255.254.0
[90/40435712] via 10.240.82.1, 1w2d, inside

vml-fw1# show route 152.146.0.1

Routing entry for 152.146.0.0 255.255.0.0
Known via "static", distance 1, metric 0 (connected)
Routing Descriptor Blocks:
* 152.146.0.0, via outside
Route metric is 0, traffic share count is 1

 

route inside 152.146.0.0 255.255.0.0 10.240.82.1 1

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents