×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.
steve.barlow Fri, 10/04/2002 - 10:47
User Badges:
  • Silver, 250 points or more

I don't think you can do this (ie VPN through the PIX outside interface and then try to ssh/telnet into the inside interface). You can however SSH to the PIX on the outside interface.

See link on which version you have and how to enable SSH (add hostname, domain name, telnet password, SSH address, generate a key) on the PIX: http://www.cisco.com/warp/public/110/pix_command_ref.shtml

Hope it helps.

Steve

Durga Prasad M.S Sun, 10/06/2002 - 03:29
User Badges:

hi

thanks for your reply.

the issue is that i want to remotely login through internet access using my laptop - roaming from different locations & configure/troubleshoot the PIX remotely.

so is it possible

steve.barlow Sun, 10/06/2002 - 05:15
User Badges:
  • Silver, 250 points or more

Options I can think of:

-VPN into network, ssh/telnet to another network device on the inside of the PIX, then telnet to inside of PIX from that device.

-Use SSH on the outside (IP would be any, or your ISPs DHCP scope) and authenticate via a AAA server. The ssh option in 6.x specifies the group of AAA servers to be used for SSH user authentication. The authentication protocol and AAA server IP addresses are defined with the aaa-server command statement.

Steve



Actions

This Discussion