ASA 5510 remote management via vpn client

Unanswered Question
Feb 25th, 2009
User Badges:

Hi,

I need to manage an ASA 5510 by remote using a Cisco vpn client.

I have a 7.2(1) an it's running. I logged into the vpn and ssh I can connect the inside IP of the ASA. I cannot ping the inside IP!


Trying the same scenario on another 5510 with ASA 7.2(4) doesn't work.


Any help?


Regards, Celio

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.
JORGE RODRIGUEZ Wed, 02/25/2009 - 21:30
User Badges:
  • Green, 3000 points or more

Celio,


Does your config have management-access statement anywhere?


in order to manage the ASA via VPN tunnel you need management-access statement.


http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/m.html#wp1987122


typical statement

asa(config)#management-access inside


if management0/0 is your only management interface defined by statement under the interface you may need


management-access management


try these and let us know if issues.


Regards


PLS rate any helpful posts


celiocarreto Fri, 03/06/2009 - 01:28
User Badges:

Hi Jorge,


I tried different combinations of management-access.

Under 7.2(1) I have no such command and it works!


Under 7.2(4) I configured:

management-access inside

ssh RA-VPN-IP inside


and it works!


Thx for your help.

Celio

Actions

This Discussion