CCO shows ---
When the Easy VPN Remote connects to a headend device, there are a minimum of five security associations (SAs), including one Internet Key Exchange (IKE) and four IPSec associations. When the Easy VPN Remote connects to the headend, it always negotiates two IPSec SAs with the IP address of the PIX outside interface to any address behind the VPN server. This may be used for management purposes to connect to the PIX outside interface from the network behind the IOS router (either via Secure Shell (SSH) or Secure HTTP for PIX Device Manager (PDM) usage or Telnet).
Pix docs for telnet say you can use the outside interface only if you have at least crypto map set up.
Do I need to do a just a "crypto map name 10 ipsec-isakmp" and then a telnet x.x.x.x outside to manage the pix?
Anyone that has done this, I would appreciate any help.