03-09-2021 09:43 AM
Hello,
Can anyone please confirm if this bug is resolved in 9.15.1? I am running an ASA5516x - 9.15.1 and we are still not able to poll snmp from the ASA over the s2s vpn tunnel
09-01-2023 05:24 AM
09-01-2023 05:19 AM
This is unfortunately now by design of the software I believe. We ended up implementing the workaround/new design and it does work, it just means you need to poll SNMP via the outside interface where your VPN peers to from, and amend the access lists at both ends to make sure the interesting traffic includes the outside addresses. This might explain it better https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvt97205
09-01-2023 06:19 AM
The workaround will "work," but creates some other problems, and of course bloats your configs. As of 9.18(2), it's possible to add a loopback interface, to handle the management functions through VPN, not complete yet, but it's a start. Seems to work well on my production units. ASDM doesn't work towards lo interface though, so if you're a gui-guy, you'll probably have to wait.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide