Improve company productivity with a Business Account.Sign Up

x
?
Solved

Can't manage remote firewalls through VPN tunnels

Posted on 2011-02-28
6
Medium Priority
?
782 Views
Last Modified: 2012-05-11
I have a Cisco ASA 5520 and two Cisco ASA 5505 device and have set them up for a VPN configuration.

The 5520 is at the main office and the two 5505 units are at remote locations and they initiate connection to the 5520 using EasyVPN.  Everything works quite well however what I have found is that I cannot ping or telnet into the remote 5505 units.  I can only ping or telnet to them from withing their respective local networks. In other words, in order to manage those ASA's, I would have to RDP into a computer with their secure network and telnet from there.  How can I do it where I could ping the internal IP of the remote ASA 5505 units?
0
Comment
Question by:tutorcom
  • 3
  • 3
6 Comments
 
LVL 4

Accepted Solution

by:
ullas_unni earned 2000 total points
ID: 34997234
make sure u have 'management-access inside' command  on the ASA u trying to access.
0
 
LVL 4

Expert Comment

by:ullas_unni
ID: 34997246
just to avoid confusion, management-access <internal-ip>
0
 

Author Comment

by:tutorcom
ID: 34997483
@ullas

You sir, are a genius!!!

Thanks!
0
Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

 

Author Closing Comment

by:tutorcom
ID: 34997491
Genius!!!  Pure Genius!!!!
0
 

Author Comment

by:tutorcom
ID: 35003181
Ok, this may sound weird...  I did what you said and it worked well.  I entered the conf, typed the command, exit, then wr mem.

It worked out great but then after an hour or so, I lost the ability to connect to it again.   I checked the conf and the line was gone.  I had to re-enter it again.  Is that normal or is it a bug?
0
 
LVL 4

Expert Comment

by:ullas_unni
ID: 35005023
hmm! thts wierd! wat version of os are u running on th asa?
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

You deserve ‘straight talk’ from your cloud provider about your risk, your costs, security, uptime and the processes that are in place to protect your mission-critical applications.
This article is about building a VRF-Aware site to site VPN tunnels in Cisco CSR1000V router with IOS XE. There are two VRF-Aware Policy Based IPsec VPN tunnels configured on CSR1000V router one with NAT and another without NAT.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

606 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question