Can't TFTP from ASA5510 to tftp server on other subnet

Unanswered Question
Aug 5th, 2009
User Badges:

Hi everyone,


I am trying to TFTP from ASA5510 on a different subnet that's connecting through a tunnel to our head office subnet...


This is the last message I see before my dos session times out


Destination filename [running-config]?

Cryptochecksum: 75d52fb1 a900a3aa a7bd3d2c cdce1c8b


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
JORGE RODRIGUEZ Wed, 08/05/2009 - 16:21
User Badges:
  • Green, 3000 points or more

Hi,


you need to define tftp server in firewall.


i.e


say the tftp server at far end of tunnel is 172.16.1.70


fw(config)#tftp-server inside 172.16.1.70 path\


even though your ipsec tunnel may be termiated on the outside interface tftp-server statement should point to inside interface , provided the tunnel is up and tftp servers is running you should be able to tftp your asa config or files to that host from asa.


give that a try .. and post results



http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008072142a.shtml



Regards

Actions

This Discussion