Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Initiating/Forcing VPN Tunnel connections

Greetings,

I'm attempting to force/initiate a Cisco ASA VPN tunnel connection from a remote location and I'm wondering if there is a way to make the Isakmp and Ipsec SAs come up from either the command prompt or from the ASDM.

In the past when configurting VPN tunnels (correct me if I'm wrong) I've had a host on either end of each ASA that I've been able to run a PING from that eventually forced the tunnel to come up on both sides. I'm creating these tunnels remotely and don't have that luxury.

The ASAs are 5550s and I do have SSH/HTTP access to them both.

Thanks in advance.

1 REPLY

Re: Initiating/Forcing VPN Tunnel connections

Hi,

If you enter the command:

management-access inside

Then you can do a:

ping inside 1.1.1.1

assuming that the 1.1.1.1 is an IP at the other end of the tunnel (part of the interesting traffic), and that the local interface is named ''inside''

In this way, you can bring up the tunnel from either ASA (without having any host on the local network to test with).

The only things to keep in mind is that the inside IP of the ASA should be part of the interesting traffic for this to work.

Let me know.

Federico.

517
Views
0
Helpful
1
Replies
CreatePlease login to create content