Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

ASDM

What is the configuration needed on the firewall or ASA when connecting to the them through ASDM.

Is it like we can access the device by using the int ip where the ASDM connects to the interface of the device.

7 REPLIES

Re: ASDM

Hi,

Make sure ASDM image is loaded into your PIX/ASA. Use 'show version' to verify it.

From CLI, you can run 'setup' command as a simple wizard, or manually configure it as follow:

interface management 0/0 (or inside interface)

ip address 192.168.1.1 255.255.255.0

nameif management

security-level 100

no shutdown

http server enable -----> enable web service

http 192.168.1.10 255.255.255.0 management (or inside) ---> 192.168.1.10 is the specific host allowed to access PIX/ASA via ASDM, or

http 192.168.1.0 255.255.255.0 inside ---> or allowing the whole 192.168.1.0 subnet to access it.

http://www.cisco.com/en/US/products/ps6121/products_user_guide_chapter09186a00806a2f1c.html#wp1042924

Rgds,

AK

Community Member

Re: ASDM

But i am not able to launch the ASDM from my machine

my machine is on 10.32.68.172 and the conf on FWSM is too enabled http 10.323.68.172 WAN

am gettig timed out message.i think it could be a routing issue..

Re: ASDM

Hi .. On your ASA's config .. check the IP address assigned to the WAN interface .. that is the IP address you have to use on the URL http:// x.x.x.x to connect from your PC.. Also make sure you IP address and the one that shows on the FWSM ( http y.y.y.y 255.255.255.255 WAN) are the same.

I hope it helps ... please rate it if it does !!!

Community Member

Re: ASDM

is it only when launching the ASDM from WAN that we should use WAN int ip.How about if accessed from other interfaces...

Re: ASDM

If you want to launch ASDM from other interface, you need to use IP from that particular interface as well, e.g

access from outside & DMZ -> client must use IP belongs to respective segments

http dmz

http outside

Make sure http engine/service is running

http enable

Rgds,

AK

Re: ASDM

Typo:

Make sure http engine/service is running

http server enable

Re: ASDM

do a "show Version" - does it show ADSM version? If not, do "dir flash:" to see ADSM image name, then add "asdm image ..." to config. Now "show version" should show it.

ASDM is https, not http.

502
Views
0
Helpful
7
Replies
CreatePlease to create content