Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA5505 Managment on Outside Interface

Is it possible to manage the ASA5505 via the outside interface. We are setting up a VPN Tunnel between to ASA5505s and the INSIDE interface on the remote ASA will be connecting to another network which we have not control of.

Thanks Mucho!!!

2 ACCEPTED SOLUTIONS

Accepted Solutions

Re: ASA5505 Managment on Outside Interface

If you are trying to manage firewall through ipsec tunnel you shoudl still have control of your inside interface and manage it through that interface..

management-access inside

and allow the host that needs to manage the firewall for telnet and http etc..

if the host is not part of that ipsec tunnel but needs to manage the firewall, then you can manage it through oustide interface by simply allowing that host in your http and telnet statements.

i.e

http outside

etc..

Regards

Re: ASA5505 Managment on Outside Interface

From the outside you can use SSH, VPN, or ASDM. Here's how to configure SSH.

PIX(config)#hostname PIXOne

PIXOne(config)#domain-name mydomain.com

PIXOne(config)#crypto key generate rsa

PIXOne(config)#ssh time-out 60

PIXOne(config)#ssh [your public IP] 255.255.255.255 outside

Hope that helps.

4 REPLIES

Re: ASA5505 Managment on Outside Interface

If you are trying to manage firewall through ipsec tunnel you shoudl still have control of your inside interface and manage it through that interface..

management-access inside

and allow the host that needs to manage the firewall for telnet and http etc..

if the host is not part of that ipsec tunnel but needs to manage the firewall, then you can manage it through oustide interface by simply allowing that host in your http and telnet statements.

i.e

http outside

etc..

Regards

New Member

Re: ASA5505 Managment on Outside Interface

Jorge, thanks for your reply. Sometimes the easy fixes appear as real problems.

Thanks Mucho!!!

Re: ASA5505 Managment on Outside Interface

From the outside you can use SSH, VPN, or ASDM. Here's how to configure SSH.

PIX(config)#hostname PIXOne

PIXOne(config)#domain-name mydomain.com

PIXOne(config)#crypto key generate rsa

PIXOne(config)#ssh time-out 60

PIXOne(config)#ssh [your public IP] 255.255.255.255 outside

Hope that helps.

New Member

Re: ASA5505 Managment on Outside Interface

Collin, thanks for your reply. Sometimes the blinding obvious escapes one!

Thanks Mucho!!!

406
Views
0
Helpful
4
Replies
CreatePlease login to create content