We have setup a site to site VPN connection to Azure using our Cisco ASA. For now we only have one static route to redirect the traffic for the Azure VLAN to the VTI interface.
That means that as it is only the ASA VPN clients know how to reach the VMs in Azure.
Since we have a DMVPN network set to advertise networks with EIGRP, I am thinking of adding the Azure network to EIGRP. THe ASA is already advertising the VPN clients subnets to the same EIGRP AS as the DMVPN routers, so as a test I have configured an interface on the ASA on the Azure subnet and added our Azure subnet to the EIGRP config of the ASA. The network starts to advertise but no route shows up.
The subnet shows up if i run: show ip eigrp topology
But show eigrp route doesnt show the subnet
Is that because I already have a static route on the ASA (it sets the gateway for Azure subnet to the VTI interface).
If i remove the static route how can I make EIGRP make sure to route all Azure traffic to the VTI interface?
No comments:
Post a Comment