2 replies to this topic

[The Wizard of id]

Might be being stupid here but any help would be appreciated.

I've got to ASA 5520's with a tunnel between them on the outside interfaces (going through the ISP cloud between them), and a 3750 on the inside interface on both sides. The management ports for the ASAs is also connected to the same siwtch in a seperate managment VLAN.

All traffic is going through as per my defined rules so no issue there, with one exception, I cannot connect via SSH to the manamgement port, I have it set up to allow this on it's inside interface as a work around but I want to get this working. The ASA automatically puts a route into its table showing the management subnet and I have one in there directing that subnet and everything else out of the inside interface.

Any ideas? Soory I haven't got the config I'm using as it's not contactable from the internet.

[othmanjo]

to do management connections to the ASA (SSH or ASDM) through VPN tunnels, you will need to use the global config command "management-access <interface name>", but this can be applied to one interface only, so you either choose the inside or management interface for this.

[The Wizard of id]

Thanks othmanjo,

I'll give that a try!