accessing the edge router that is behind the ASA using an inside address

Unanswered Question
Apr 19th, 2010
User Badges:
  • Silver, 250 points or more

I have a router that is in front of our firewall (ASA5510) that I'd like to manage using an inside address. Is that possible?


Internet<--->router<--->ASA5510<--->Inside


router Interface facing the firewall has an ip address of 208.x.x.254


The firewall outside address is 208.x.x.253


The inside address that I'd like to use is 10.1.1.1


So, when an inside user wants to telnet to the router, he will use 10.1.1.1


i tried static (inside,outside) 208.x.x.254 10.1.1.1 netmask 255.255.255.255


but that does not seem to work.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
rm760 Sat, 04/24/2010 - 08:00
User Badges:

I would recommend modifying access to the edge router to use SSH as Telnet sends passwords in clear text.  Next create an ACL on the router so it can only be accessed for management via specific IP addresses associated with the ASA device.

Actions

This Discussion

 

 

Trending Topics - Security & Network