This is my scenario. I have an eBGP relationship from my PA to Vendor A and Vendor B. I have users that traverse this firewall and use their respective applications. I have Vendor C which is a site-to-site vpn. I'm doing a routed vpn with this vendor and I have static routes for Vendor C going across the tunnel interface. The issue I am having is the route was configured in the static route and added to the redistribution profile for Vendor C. When I committed the change users that were working with applications from Vendor A and B dropped. The drop was about 30 seconds and then came back. The PA never lost the bgp peer with either vendor but the applications dropped.
I ran a test by sending a ping to the destination IP in Vendor A's network and about 30 seconds to a minute after the commit change I dropped my ping. What I noticed was that the route went away even though I could see it in the firewall route table.
Has anyone out in the community seen or experienced this? When adding a route to the redistribution profile is there a route re-convergence that happens?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!