03-18-2014 11:33 AM - edited 02-21-2020 05:08 AM
I have an ASA 5505 (config) and I can SSH to the device when I'm on the inside network, but not from the internet using the IP of the outside interface.
Why not?
The solution was: the client was confidently telling me the wrong outside IP address. With the correct IP address, everything works.
03-18-2014 12:31 PM
Hi,
You might have enabled ssh on the inside interface. Below is the config that you will find for the already existing SSH connection on your ASA.
ssh < The IP address of the host and/or network authorized to
login to the system> <mask> <interface name---inside>
so in the same way you should config the ssh for the outside interface too allowing SSH. But you should be aware of the fact that you are allowing the users on internet to ssh into your ASA. It is always recommended to not to allow ssh on the outside.
I hope this gave you a clue.
Thanks
03-18-2014 12:53 PM
I believe I've already enabled SSH access from the outside.
Specifically, this line in the config: ssh 0.0.0.0 0.0.0.0 outside
Yet it doesn't work. Is there something else?
08-23-2014 12:01 PM
use asdm - and enable outside - its very simple....
03-18-2014 01:55 PM
Regenerate crypto keys. I assume you have already generated general purpose keys as you've mentioned that you can access from inside.
What does debug say "debug ssh"
Thanks
Musab
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide