Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

monitor ASA5505 over site 2 site VPN tunnel

Hi,

We have a site to site VPN between a checkpoint and a asa5505. Everything is working fine. We would now like to monitor the asa5505 from our monitoring server which is behind the checkpoint.

I have configured the snmp community. When I check the log on the asa, I can see the request coming in from the monitoring machine and it is not being blocked. However, it is not working.

How can I fix/troubleshoot this issue?

Thanks in advance,

Jeroen

3 REPLIES

Re: monitor ASA5505 over site 2 site VPN tunnel

Could be a routing issue. Can you ping the monitoring server from the ASA?

Brandon

New Member

Re: monitor ASA5505 over site 2 site VPN tunnel

Hi,

Thanks for your reply. I cannot ping the monitoring server from the ASA. But I don't think it is related as I cannot ping anythng from the ASA, or anything that is behnd the asa cannot ping anything that is on the internet.I beleive this to be a seperate issue as the asa by default does not allow ping.

I can also not telnet or ssh to the asa via the vpn tunnel, this is probably the same issue as the snmp one.

Rgds,

Jeroen

Re: monitor ASA5505 over site 2 site VPN tunnel

Is the monitoring server on a subnet that the ASA has a route to? Can you allow pings temporarily to test connectivity?

Brandon

265
Views
0
Helpful
3
Replies