ASA Site to Site VPN

bbresslin
bbresslin used Ask the Experts™
on
I have a site to site VPN installed between two asa 5505's which is up and working, and the remote site has asdm and ssh access into the main site, however I do not have any access into the remote site?  In the ASDM / HTTPS / SSH access profiles the IP addresses of the main site are configured for access and http server is enabled, but I cannot connect.  The remote site does have a ISP modem that is doing NAT (port forwarding) 500 and 4500.  The external interface of the firewall at the remote is 192.168.1.2 and the internal interface is 172.17.0.1, which is where I am trying to access ASDM / SSH...
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
If you want to access the inside interface across the vpn you will have to add the following commands.

http x.x.x.x 255.255.255.0 inside ---> x is the subnet you are accessing the asdm from.

and then

management-access inside

Regards,

3nerds

Author

Commented:
Those commands are in there....do I need to apply "same-security-traffic permit intra-interface" on the remote firewall to allow access to the device from my network?
Yes that should be there as well.

Regards,

3nerds

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial