cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1053
Views
0
Helpful
4
Replies

configure ASa 5505 from remote site using ASDM

mawallace
Level 1
Level 1

I would like to be able to administer the ASA 5505 from another site, which is linked via a site to site Ipsec LAN.

How do I enable this feature?

1 Accepted Solution

Accepted Solutions

Hi,

You can administer an ASA remotely by using the public IP (via the Internet), or via the tunnel by reaching the private IP.

You can reach the private IP by enabling the command:

management-access inside

Then you can access the ASA by its private IP via CLI or GUI.

Federico.

View solution in original post

4 Replies 4

Gaston Bougie
Level 1
Level 1

You have to let the asa know from which interface you may manage the asa via vpn.

check out the commando "management-access".

if you want to configure your remote asa on his inside interface, you configure: "management-access inside"

Also check your acl and nat.

Hi,

You can administer an ASA remotely by using the public IP (via the Internet), or via the tunnel by reaching the private IP.

You can reach the private IP by enabling the command:

management-access inside

Then you can access the ASA by its private IP via CLI or GUI.

Federico.

Right - so that I have it clear in my mind

ASA I want to access at Site A - the "inside" network and ip address is 192.168.30.1

The site from which I am connecting is one the 192.168.1.1

So..

On the ASA I issue the managment-access inside command

and then I simply add the 192.168.1.1 address to the list of sites from which I am allowed to connect? I can then connect via the VPN link?

Correct.

Assuming the ASA allows the management access from the IP that you're coming from.

Federico.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: