SSH and ASDM to Pix over VPN Client Connection

Unanswered Question
Jun 9th, 2008
User Badges:

How can we setup access to manage the pix (ssh and asdm) over a vpn client connection? We have given access to the pix via ssh and asdm to the VPN sunbet, but cannot access the pix. The commands we entered are below:


ssh 111.111.111.0 255.255.255.0 outside

http 111.111.111.0 255.255.255.0 outside


111.111.111.0 255.255.255.0 is our VPN subnet


Any ideas would be great. Thanks

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
cslitb Mon, 06/09/2008 - 20:46
User Badges:

Yes, we are using split tunneling. The subnet for the inside interface of the pix is 192.168.0.0. We can get to other devices on that same subnet (webservers, dns, etc) using the vpn client, but cannot access the pix with SSH or asdm. We have looked at the syslogs, but do not see anything out of the ordinary.

Farrukh Haroon Mon, 06/09/2008 - 21:44
User Badges:
  • Red, 2250 points or more

Did you try the management-access command?


Regards


Farrukh

cslitb Tue, 06/10/2008 - 06:13
User Badges:

Currently we have this in our config:

http server enable

http 111.111.111.0 255.255.255.0 inside (tried both inside & outside)

management-access inside

Farrukh Haroon Tue, 06/10/2008 - 11:53
User Badges:
  • Red, 2250 points or more

This might be a stupid question, but have you tried ASDM/SSH from the inside (normal LAN users)? just to make sure all is well (Crypto keys, ASDM image etc.)


Regards


Farrukh

cslitb Tue, 06/10/2008 - 12:45
User Badges:

Yes we have. We can both SSH and ASDM access to the Pix from the "inside".

cslitb Thu, 06/12/2008 - 14:43
User Badges:

Yes, it does terminate on the outside interface.

Actions

This Discussion