managing the ASA through remote vpn

Unanswered Question
Nov 19th, 2007


i am facing a weird behavior from the ASA, i usually access my remote vpn to the office, and then can access via ssh the ASA inside interface to alter the configuration.

since a week now , i can't access ASA this way, i checked the logs its giving :"Tcp access denied by ACL from ... to outisde"

and why it is saying outside ? its the inside interface !

any thoughts ?


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
srue Mon, 11/19/2007 - 10:59

show run sysopt

look for:

sysopt connection permit-vpn

is it there or not?

also, is the command, management-access inside present?

josephium Mon, 11/19/2007 - 22:53

thank you for your fast reply

very true, the problem is from the sysopt , but i have to put no sysopt because i have several site to site vpns and i don't want other sites to access my asa, so what should i put as ACL to make it work ?


This Discussion