manage via ssh over vpn

Discussion in 'Cisco' started by P1, Jun 1, 2009.

  1. P1

    P1 Guest

    I have a functioning site to site VPN between two ASAs, but cannot
    administer the remote device on its private "inside" interface address,
    only on its public. Pings to the interface also fail. Everything works
    fine when connecting locally to it from a host on the remote network.

    -Paul
    P1, Jun 1, 2009
    #1
    1. Advertising

  2. P1

    P1 Guest

    Artie Lange wrote:
    > P1 wrote:
    >> I have a functioning site to site VPN between two ASAs, but cannot
    >> administer the remote device on its private "inside" interface
    >> address, only on its public. Pings to the interface also fail.
    >> Everything works fine when connecting locally to it from a host on the
    >> remote network.
    >>
    >> -Paul

    >
    >
    > http://www.cisco.com/en/US/docs/security/pix/pix63/command/reference/mr.html#wp1137951
    >
    >
    > management-access
    > Enables access to an internal management interface on the firewall.
    >
    > [no] management-access mgmt_if
    >
    > show management-access
    >
    > Syntax Description
    > mgmt_if
    > The name of the firewall interface to be used as the internal
    > management interface.
    >
    >
    >
    >
    > Defaults
    > None.
    >
    > Command Modes
    > The management-access mgmt_if command is available in configuration mode.
    >
    > The show management-access is available in privileged mode.
    >
    > Usage Guidelines
    > The management-access mgmt_if command enables you to define an internal
    > management interface using the IP address of the firewall interface
    > specified in mgmt_if. (The firewall interface names are defined by the
    > nameif command and displayed in quotes, " ", in the show interface output.)
    >
    > In PIX Firewall software Version 6.3, this command is supported for the
    > following through an IPSec VPN tunnel only, and only one management
    > interface can be defined globally:
    >
    > •SNMP polls to the mgmt_if
    >
    > •HTTPS requests to the mgmt_if
    >
    > •PDM access to the mgmt_if
    >
    > •Telnet access to the mgmt_if
    >
    > •SSH access to the mgmt_if
    >
    > •Ping to the mgmt_if
    >
    > The show management-access command displays the firewall management
    > access configuration.
    >
    > Examples
    > The following example shows how to configure a firewall interface named
    > "inside" as the management access interface:
    >
    > pixfirewall(config)# management-access inside
    > pixfirewall(config)# show management-access
    > management-access inside


    Artie strikes again :)
    Thanks!
    P1, Jun 1, 2009
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. SamuelF
    Replies:
    0
    Views:
    2,344
    SamuelF
    Jan 17, 2005
  2. AM
    Replies:
    1
    Views:
    1,685
    Nicholas DePetrillo
    Feb 5, 2006
  3. Robert B. Phillips, II

    Question regarding SSH via Lantronix SCS100

    Robert B. Phillips, II, May 18, 2006, in forum: Cisco
    Replies:
    2
    Views:
    934
    Robert B. Phillips, II
    May 20, 2006
  4. pasatealinux
    Replies:
    1
    Views:
    2,012
    pasatealinux
    Dec 17, 2007
  5. Theo Markettos

    VOIP over VPN over TCP over WAP over 3G

    Theo Markettos, Feb 3, 2008, in forum: UK VOIP
    Replies:
    2
    Views:
    824
    Theo Markettos
    Feb 14, 2008
Loading...

Share This Page