Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

Managing ASA's the hard way

We have several ASA 5520's that are only accessible by 1 of 2 methonds:

1. Through the outside interface, using only SSH.

2. Through the inside interface, but having to hop through an internal routing device (usually a 2800 series router). Telnet, ssh, snmp are all available through this device.

My 2 questions:

1. Can the ASA's be managed using SSH only, or is SNMP required?

2. Is there a way to have CiscoWorks hop through one of the 2800's to manage the ASA?

Thx.

2 REPLIES
Bronze

Re: Managing ASA's the hard way

Hi!

I think that it is not possible to tell Ciscoworks to hop through an router to the ASA.

And for managing the devices you have to use SNMP. Without it isn't possible I think.

But you can use a ACL to allow SNMP only for the IP of Ciscoworks.

New Member

Re: Managing ASA's the hard way

Thanks Sven. That's an idea. I would like to use SNMP on the outside, but version 2 is not secure. The ASA's don't do version 3 as far as I know. Maybe we'll build a vpn tunnel and make it secure.

112
Views
3
Helpful
2
Replies
CreatePlease to create content