10-12-2007 09:18 AM - edited 03-11-2019 04:24 AM
Hello,
From a console connection with the interface configuration:
name 172.16.204.198 pix_manage
name 172.16.204.200 fo_pix_manage
interface Ethernet2
speed 10
duplex full
nameif manage
security-level 80
ip address pix_manage 255.255.255.224 standby fo_pix_manage
I am attempting to add the following ACL in order connect to the switch and manage it remotely. At least from a device in the same subnet as the interface indicated
access-list uni_manage extended permit tcp 172.16.204.192 255.255.255.224 172.16.204.192 255.255.255.224 eq 22
I am receiving the following error message:
ERROR: IP address,mask <pix_manage,255.255.255.224> doesn't pair
Where in these steps have I erred?
10-12-2007 09:27 AM
Does it take something like this...
telnet 172.16.204.192 255.255.255.224 manage
10-12-2007 10:09 AM
That did, thanks for your prompt and helpful response.
Does the PIX support https or ssh access?
10-12-2007 10:15 AM
Yes it does. Sorry I should have put...
ssh 172.16.204.192 255.255.255.224 manage
http server enable
http 172.16.204.192 255.255.255.224 manage
Please rate helpful posts.
10-12-2007 10:54 AM
So much better, however, I am now getting authorization problems. Although I am able to access the PIX on my console and telnet access. The ssh and https access will not accept the credentials I setup for telnet.
Do I need to specify a different username and password conbination for ssh & https as opposed to the console & telnet access?
Thanks again.
10-12-2007 11:04 AM
Want to post a clean config from the pix?
10-12-2007 11:10 AM
10-12-2007 11:19 AM
I think this will do it...
aaa authentication ssh console LOCAL
aaa authentication http console LOCAL
username cisco password cisco123
10-12-2007 11:28 AM
Getting closer.
My ssh2 access works now.
When I try https access I get a pop-up
prompting for username and password which
I enter. I then get
HTTP 404 - File not found
10-12-2007 11:40 AM
I tried these commands:
http server enable
http 172.16.204.214 255.255.255.255 manage
But, I am still getting the error 404 page not found message.
10-12-2007 11:42 AM
Well...1 out of 2 isn't bad. Are you sure the PDM is installed on the pix?
10-12-2007 11:47 AM
1 out 2 is not bad at all.
I do not know that PDM is installed.
How do I determine that?
10-12-2007 11:58 AM
Hello,
I obtained a version of the PDM object, but, the instructions I have located do show where to tftp the object to on the VPN server. Is this a simple tftp to the flash: location?
10-12-2007 11:59 AM
Sorry in pix 7 it is the ASDM.
http://cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00804708d8.shtml#t8
You could look at show ver or dir flash: to see if it is installed. If not the doc above will help you get it installed.
10-12-2007 12:19 PM
Thanks for all your help.
My privilages do not permit downloading the ASDM object.
But, I progressed further than I was earlier today and I learned a couple of new things.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide