Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1113
  • Last Modified:

ASA5510 ASDM problem

Hello experts,
I've installed a new ASA5510 for one of my clients.
Set up the clientless WebVPN, no problem.
Having problems accessing the GUI (ASDM) from the WebVPN.
I get "server not available"

Can access the GUIs for all the other network equipment (switches and WAPs)
I thought maybe it was a port conflict because both WebVPN and ASDM use https (port 443), so I tried to change the ASDM to port 444.
No luck.

Also, I used the wizard to create the WeBVPN, and it created "bookmarks".
How can I view/modify these bookmarks from within telnet.

I've attached a config file.

Note that the client is hundreds of miles away, but I do have full telnet access to all devices.

Any help would be appreciated.

fw1-confg-redacted.txt
0
kdearing
Asked:
kdearing
2 Solutions
 
SaineolaiCommented:
From your configuration:

http server enable 444
http 10.10.1.0 255.255.255.0 inside

ADSM is only accessible from an IP address in 10.10.1.0/24 subnet and using port 444 not 443
0
 
Pete LongConsultantCommented:
Agreed take a read through this http://www.petenetlive.com/KB/Article/0000173.htm

essentially point your browser to https://10.10.1.1:444 (at the moment that can only be done from internal host 10.10.1.0).


0
 
kdearingAuthor Commented:
OK,
I can get to the ASDM from the outside using port 444 by adding      http 0.0.0.0 0.0.0.0 outside

But I need to be able to edit the bookmarks on the homepage of the WebVPN
The bookmarks themselves are not in the configuration file

Its got something to do with this part of the config:

webvpn
 enable outside
 smart-tunnel network net1 ip 10.10.1.0 255.255.255.0
group-policy DfltGrpPolicy attributes
 webvpn
  url-list value book
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 
mahrens007Commented:
for testing, could you take out: smart-tunnel network net1 ip 10.10.1.0 255.255.255.0 ?
0
 
kdearingAuthor Commented:
That statement (along with many others) was put in by the VPN wizard when I set up the WebVPN.
I could remove it if necessary, however the only problem I have right now is being able to edit the bookmarks on the VPN portal page.
0
 
MikeKaneCommented:
I know that in the ASDM, the bookmarks are edited in CONFIGURATION -> REMOTE ACCESS VPN -> Clientless VPN Portal ->Portal -> Bookmarks   Then pick the bookmark group and edit it to add/edit/delete bookmarks.  

I'll have to check where those are stored...  off the top of my head, I don't know.
0
 
kdearingAuthor Commented:
Access the GUI is still not working, but I have external access to it.
Am attempting to edit bookmarks.
0

Featured Post

New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now