07-12-2006 07:41 PM - edited 03-09-2019 03:34 PM
What is the configuration needed on the firewall or ASA when connecting to the them through ASDM.
Is it like we can access the device by using the int ip where the ASDM connects to the interface of the device.
07-13-2006 05:39 AM
Hi,
Make sure ASDM image is loaded into your PIX/ASA. Use 'show version' to verify it.
From CLI, you can run 'setup' command as a simple wizard, or manually configure it as follow:
interface management 0/0 (or inside interface)
ip address 192.168.1.1 255.255.255.0
nameif management
security-level 100
no shutdown
http server enable -----> enable web service
http 192.168.1.10 255.255.255.0 management (or inside) ---> 192.168.1.10 is the specific host allowed to access PIX/ASA via ASDM, or
http 192.168.1.0 255.255.255.0 inside ---> or allowing the whole 192.168.1.0 subnet to access it.
Rgds,
AK
07-17-2006 02:04 AM
But i am not able to launch the ASDM from my machine
my machine is on 10.32.68.172 and the conf on FWSM is too enabled http 10.323.68.172 WAN
am gettig timed out message.i think it could be a routing issue..
07-17-2006 02:55 AM
Hi .. On your ASA's config .. check the IP address assigned to the WAN interface .. that is the IP address you have to use on the URL http:// x.x.x.x to connect from your PC.. Also make sure you IP address and the one that shows on the FWSM ( http y.y.y.y 255.255.255.255 WAN) are the same.
I hope it helps ... please rate it if it does !!!
07-17-2006 06:41 PM
is it only when launching the ASDM from WAN that we should use WAN int ip.How about if accessed from other interfaces...
07-19-2006 01:03 AM
If you want to launch ASDM from other interface, you need to use IP from that particular interface as well, e.g
access from outside & DMZ -> client must use IP belongs to respective segments
http
http
Make sure http engine/service is running
http enable
Rgds,
AK
07-19-2006 01:06 AM
Typo:
Make sure http engine/service is running
http server enable
07-17-2006 03:12 AM
do a "show Version" - does it show ADSM version? If not, do "dir flash:" to see ADSM image name, then add "asdm image ..." to config. Now "show version" should show it.
ASDM is https, not http.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide