Solved

Gateway of Last resort

Posted on 2007-11-23
11
2,498 Views
Last Modified: 2012-08-14
I am trying a basic set-up that I want to look like this:

Internet
 |
ISP router (cisco 870)
 |
ASA 5510
 |
LAN

My ISP has given me a /29 network of public IP addresses, the first address is assigned to the ISP's router. I have assigned the second in the range to the Outside interface of my ASA. I am planning to use the rest of the IPs in a DMZ and for some NATting. The problem is that when I try to specify the default route to be the IP of the ISP's router, I get warned that the route is directly connected, which it is.
But how do I specify my gateway of last resort to use the ISP router?
0
Comment
Question by:Curlysafrican
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
  • 2
11 Comments
 
LVL 3

Expert Comment

by:mediaonegraphics
ID: 20338228
Question. Why dont you have the ISP's router setup as a bridge and your ASA as the 1st public?
0
 

Author Comment

by:Curlysafrican
ID: 20338280
My ISP doesn't do bridging on the routers. Part of their policy/strategy.
0
 
LVL 3

Expert Comment

by:mediaonegraphics
ID: 20338307
The ISP's router should be configured as your default gateway:
http://www.cisco.com/warp/public/105/default.html
0
Flexible connectivity for any environment

The KE6900 series can extend and deploy computers with high definition displays across multiple stations in a variety of applications that suit any environment. Expand computer use to stations across multiple rooms with dynamic access.

 

Author Comment

by:Curlysafrican
ID: 20338361
I have tried to specify the ISP's router as my default gateway with no joy. Thanks for the link, but the ASA's CLI works a little different to that of the routers mentioned.

I entered the following:
ASA(config)# route Outside 0.0.0.0 0.0.0.0 <IP address of router> 1

Then I get the following output:
ERROR: Cannot add route, connected route exists.

Even when I try to add the router's external IP, I get this message.
0
 
LVL 3

Expert Comment

by:mediaonegraphics
ID: 20338376
Try using the gateway IP as used in the ISP's router.
0
 

Author Comment

by:Curlysafrican
ID: 20338438
I get the same result.
ERROR: Cannot add route, connected route exists.
0
 
LVL 28

Expert Comment

by:batry_boy
ID: 20338697
Post the current ASA configuration...is it using DHCP for Ethernet0 with the "setroute" option at the end?  If so, the ASA is picking up the default route from the ISP's router.
0
 

Accepted Solution

by:
Curlysafrican earned 0 total points
ID: 20367232
Restarting the device allowed the next hop to be entered.
I noticed a default route "speciified" on the management interface when issuing a show route.
After the restart I was able to apply the conifg:

ASA(config)# route Outside 0.0.0.0 0.0.0.0 <IP address of router> 1
0
 
LVL 28

Expert Comment

by:batry_boy
ID: 20367386
Cool...did that fix your issue?
0
 

Author Comment

by:Curlysafrican
ID: 20367494
It did resolve the issue that I had and now I can talk out without problem. Thanks for all your input.

0

Featured Post

2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco tacacs question 6 53
Auto Qos question 1 56
Install Cisco Unified Comunication Manager Subscriber 6 47
VPN - Site to Site  not decapsulating (ASA-Sophos XG85) 1 30
Many of the companies I’ve worked with have embraced cloud solutions due to their desire to “get out of the datacenter business.” The ability to achieve better security and availability, and the speed with which they are able to deploy, is far grea…
When speed and performance are vital to revenue, companies must have complete confidence in their cloud environment.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question