Cisco ASA management Interface

Last week I was working on connecting to a DR Cisco ASA from head office. The DR Cisco ASA plugs into the primary L3 DR switch. The interface on the switch connecting to the ASA has been assigned to vlan 51. The ASA management interface has an IP address within vlan 51 with a default gateway pointing to the SVI on the L3 switch.

From the switch and any other device on vlan 51, I could ping the management interface however, outside of that vlan, no other device could talk to the ASA.

To make this work, I created a static route on the ASA which said to route to network 192.168.10.0/24 on the management interface use default gateway 192.168.10.1.

The configuration on the firewall was:

Route Management 192.168.10.0 255.255.255.0 192.168.10.1 1