Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
398
Views
0
Helpful
1
Replies

EOMPLS via ASA

tshibos
Level 1
Level 1

‎02-18-2011 09:19 AM - edited ‎03-03-2019 06:12 AM

I am trying to build an EoMPLS connection between 2 sites via 2 ASA on each site. The goal to is to extend 1 or more VLAN between sites. It has been deployed successfully in the past without ASA but this time, the ASA in place is requirement. The ASA are deployed in transparent mode. I am able to pass the LDP traffic and see the neighbor. All neighbors are reachable via routing, but cannot built the VC.

the deployment is:

6506E-------ASA5520------7206-------7206------ASA-------6506E

Has anyone tried this successfully? If yes, what are the requirement to build the L2TP tunnel through an ASA?

Thanks

Labels:
0 Helpful
1 Reply 1

Phillip Remaker
Cisco Employee
Cisco Employee

‎02-23-2011 09:47 AM

LDP runs over TCP or UDP, so the ASA will pass it.

The actual MPLS frames are ethertype 0x8847 and 0x8848, so you need to allow that in an ethertype access list in the transparent firewall.

http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/acl_ethertype.html

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents