I recently replaced a SonicWALL PRO 3060 with a Cisco ASA 5510, and I'm having problems with my VPN tunnels and RIP routing. My remote sites have SonicWALL TZ170s, and I could have them send RIP v2 multicasts across the VPN connections back to the PRO 3060. Now that I've replaced the 3060 with the ASA, these multicasts aren't passing through the firewall. I've read somewhere that ASA don't pass multicasts/broadcasts through VPN tunnels, but haven't been able to find out why or if there is a work-around.
My network looks like this:
(inside network) --- 192.168.1.0/24 --- (inside router) --- 192.168.254.0/30 --- (Cisco ASA) --- Internet --- (remote SonicWALL TZ170) --- 192.168.x.0/24 --- (remote network)
The inside network where my ASA is located has an internal router, but the remote network has no router, just the firewall.
Some of the work-arounds I've seen involve firewalls and inside routers on both ends, but that obviously won't work in my situation.
Is there any simple way to get the ASA to accept RIP v2 multicasts (or v1 broadcasts) through the VPN? Thanks.
Start Free Trial
