ASA 5510 remote management via vpn client

Unanswered Question
Feb 25th, 2009

Hi,

I need to manage an ASA 5510 by remote using a Cisco vpn client.

I have a 7.2(1) an it's running. I logged into the vpn and ssh I can connect the inside IP of the ASA. I cannot ping the inside IP!

Trying the same scenario on another 5510 with ASA 7.2(4) doesn't work.

Any help?

Regards, Celio

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.
JORGE RODRIGUEZ Wed, 02/25/2009 - 21:30

Celio,

Does your config have management-access statement anywhere?

in order to manage the ASA via VPN tunnel you need management-access statement.

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/m.html#wp1987122

typical statement

asa(config)#management-access inside

if management0/0 is your only management interface defined by statement under the interface you may need

management-access management

try these and let us know if issues.

Regards

PLS rate any helpful posts

celiocarreto Fri, 03/06/2009 - 01:28

Hi Jorge,

I tried different combinations of management-access.

Under 7.2(1) I have no such command and it works!

Under 7.2(4) I configured:

management-access inside

ssh RA-VPN-IP inside

and it works!

Thx for your help.

Celio

Actions

This Discussion