Solved: Re: PIX ssh access via VPN

tjskier69 · ‎06-20-2006

Hi folks,

unable to access the PIX on the inside interface using ssh.

The VPN works ok, and can access other devices further into the network no problem.

ip local pool NETWORK-SUPPORT-POOL 192.168.31.241-192.168.31.254

vpngroup NETWORK-SUPPORT address-pool NETWORK-SUPPORT-POOL

vpngroup NETWORK-SUPPORT dns-server adc01-inside

vpngroup NETWORK-SUPPORT split-tunnel NETWORK-SUPPORT_splitTunnelAcl

vpngroup NETWORK-SUPPORT idle-time 3600

vpngroup NETWORK-SUPPORT password whatever

access-list NETWORK-SUPPORT_splitTunnelAcl permit ip 192.168.0.0 255.255.0.0 any

Cheers

Tony

jmia · ‎06-20-2006

Tony,

What you need to do is as follows....

(in config mode on you PIX)

ssh 192.168.31.0 255.255.255.0 inside

When you connect via your VPN client, type the inside interface IP address of your PIX on your SSH Client (I'm using Putty SSH). Also, make sure that you have generated rsa keys for ssh to work!!

If you are still having problems, then (again in config mode) add: management-access inside.

Hope this helps and please rate posts! :)

Jay

View solution in original post

jmia · ‎06-20-2006