Sometimes you get special scenario situations where it just takes some creative thought. Routing, sometimes, is not different. In this case, I had a management VLAN that needed to be accessed from remote-access client. There was an IP address on the ASA also on that management VLAN. So that meant that any ping, etc, trying to get to the management network would do what? Yes, go to the management interface, since it was a directly connected route. However, in this case, that was undesirable.
No worries. Ill just add network routes in for up to the IP that I need. He requested any IP below the ASA IP should be fine. That means any IP below 192.168.50.125, in this case. So what is the easiest way to do this? See below.
5520ASA# config t
5520ASA(config)# route inside 192.168.50.0 255.255.255.192 192.168.6.4
5520ASA(config)# route inside 192.168.50.64 255.255.255.224 192.168.6.4
5520ASA(config)# route inside 192.168.50.96 255.255.255.240 192.168.6.4
5520ASA(config)# route inside 192.168.50.112 255.255.255.248 192.168.6.4
5520ASA(config)# route inside 192.168.50.120 255.255.255.252 192.168.6.4
5520ASA(config)# route inside 192.168.50.124 255.255.255.255 192.168.6.4
5520ASA(config)#exit
No comments:
Post a Comment
Your comment will be reviewed for approval. Thank you for submitting your comments.