Solved

ASA 5505 Configuration - Static Route

Posted on 2008-10-20
2
2,639 Views
Last Modified: 2012-05-05
I am configuring a Cisco ASA 5505 and need to add a static route.  My internal network is 10.1.1.x and the internal IP address of the ASA is 10.1.1.1.  One service we use is connected to a router on the network with an IP of 10.1.1.12.  I need to route all traffic to the 192.108.200.X network through 10.1.1.12.  I thought it would be as simple as adding a route, which I did.  The command I used added a static route to the inside interface so that all traffic to 192.108.200.x goes through gateway 10.1.1.12 metric 2.  No go.  Is this even possible on the ASA 5505?  I've read some articles that seem to indicate this isn't a router and can't do that.  If it is possible, do I need an ACL?  I didn't think so as all internal traffic is allowed out to the internet and all internal devices can communicate with each other.
0
Comment
Question by:mikerich61
2 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 22759507
Yes, it can route, but probably not in the sense that you think.
The metric should be "1" and not 2 because the next hop is directly connected on the inside. But that is irrelevant.

What it won't do is allow you to have the ASA as the LAN default gateway and re-route packets that come from your PC going to 192.108.200.x, hit the inside ASA, then redirect them back out the same interface to the other router.
You have to have a default route on this other router pointing to the ASA, then point your PC's default gateway to this router and not the ASA. Routers can "bounce" the packet off to another locally connected gateway whereas the ASA cannot.
0
 
LVL 2

Accepted Solution

by:
JimmyLarsson earned 500 total points
ID: 22765957
As long as it is an ASA and not a Pix it[ running verion >7.0. In this case you can indeed reroute traffic back on the ingress interface. Here is some more information about this:

http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a0080734db7.shtml

Br Jimmy Larsson
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I recently updated from an old PIX platform to the new ASA platform.  While upgrading, I was tremendously confused about how the VPN and AnyConnect licensing works.  It turns out that the ASA has 3 different VPN licensing schemes. "site-to-site" …
Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now