ASA5505 "Routing failed to locate next hop for UDP from inside:" Why??

[CRS1]

ASA5505 drops Internet randomly. It lost it again yesterday and I was able to look at the logs and got this:

Dec 02 2007|15:15:16|110002|||Failed to locate egress interface for UDP from inside:192.168.x.x/1028 to 167.x.x.x/53

Dec 02 2007|15:15:06|110003|||Routing failed to locate next hop for UDP from inside:68.x.x.45/1 to outside:192.43.x.x/123 (68.x.x.45 is my external IP)

It looks like for some reason the ASA looses the dynamic route to the Internet. My IP is assigned dynamically by the ISP so what I decided to do is to statically put the IP route to the Internet as the gateway being the next hop. I used this: route outside 0.0.0.0 0.0.0.0 68.x.x.1 1. hopefully this fixes the problem with the ASA losing the Internet.

Has anyone seen this before? and if so will "route outside 0.0.0.0 0.0.0.0 68.x.x.1 1" fix the issue?

Any feedback would be great!

Thanks!

 

[Supergrrover]

Are you using this in your config? -
ip address outside dhcp setroute

If your gateway address doesn't change during your IP renewals, then it is probably ok to leave out the setroute and just do a static route. Do some tests to make sure.



Brent
Systems Engineer / Consultant
CCNP, CCSP

 

[CRS1]

My external IP address never really changes so I think I might be ok with entering the default-gateway statically. I do have "ip address outside dhcp setroute" on my external interface. Hopefully this fixes my issue. What I do want to know is why this is happening. Anyone out there that might have an idea?

 

[NetworkGhost]

If you can check the routing table while this happens that would be good. Also check to see if your IP is doing nay type of renewal at that time. I would talk to Cisco about this one.

http://www.wr-mem.com