cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
12201
Views
26
Helpful
3
Replies

Is there a command in ASA equivalent to "ip tftp source-interface" in IOS?

vbuendia
Level 1
Level 1

Is there a command in ASA equivalent to the IOS command "ip tftp source-interface"?

We have a L2L VPN connection that only encrypts traffic from the inside LAN of the ASA, to an External Operations Center LAN. The TFTP server resides on the Operations Center LAN, unfortunately, when I issue the command "copy startup-config tftp://..." the ASA sources from it's Outside address (seems logical) the content doesn't get encrypted and of course, the packets get dropped. Seems like the only way to encrypt the traffic (with the current configuration) is by sourcing my TFTP from the inside interface. Anyone has had this issue? Has anyone fixed this issue? I will appreciate any inputs.

3 Replies 3

anandramapathy
Level 3
Level 3

Try this

tftp-server insIDE X.X.X.X filename

Nelson Minica
Level 1
Level 1

Looks like ;int=inside also works:

copy tftp://x.x.x.x/filename;int=inside flash:

but if it should be Vice versa. Save the file with a cisco VPN via the ASA INSIDE interface?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: