We help IT Professionals succeed at work.

site-to-site vpn management

355 Views
Last Modified: 2013-12-03
I currently have a site-to-site vpn configured with our main office and a remote office.  Behind the main office is a syslog/snmp server.  the remote office asa only has two interface, "outside" and "inside" inteface.  

The main office (internal subnet) can ssh to the remote office's "outside" interface.  With this connectivity, i can use cat tools to back up the config,  

Here's where my issue lies.  I CANNOT ssh nor ping the "inside" interface of the remote office's ASA from the main office's internal subnet.
I would like to send syslog/snmp-traps from the remote ASA to the syslog/snmp server located behind the main office using the inside interface of this remote ASA.  There are no ACL denies, NAT issues that is obvious from the ASA monitor.  Note that it's the same thing that's happening from remote office's to the main office's inside interface; i cannot ping it nor ssh to it.  

Anyone seen this kind of issue with a site-to-site VPN established using two ASA's?
I will attach some configs for better understanding.

Thanks
Comment
Watch Question

This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.