Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
833
Views
0
Helpful
3
Replies

ASA/CSC SSM Remote Management Question

Go to solution
ajay_dand
Level 1
Level 1

‎12-08-2006 01:17 AM - edited ‎03-11-2019 02:05 AM

Hi,

I've configured the CSC SSM on the ASA to be a part of Internal Network (192.168.x.x) and it is able to connect to the internet and working fine. I've also allowed remote management on the External Interface facing the Internet, and am able to connect into the box and run the ASDM. However, when I try to start the CSC Management module, I am unable to open it. It gives an error, saying could not open <URL with 192.168.x.x> address. I would like to know how I would be able to work around this issue. I have spare Public IPs but am not sure how exactly a NAT would resolve this problem. Thanks in advance.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ryan_holland
Level 1
Level 1

‎12-10-2006 09:37 AM

Ajay,

ASDM will try to connect to the IP address assigned to the CSC, your options would be to VPN into the private network or create a static NAT entry that maps the internal 192.168.x.x address to a routable address that can be accessed from the external network. Then when connecting to the CSC you will get a dialog that asks what IP to use when connecting to the CSC, choose the radio button that will allow you to enter an IP that differs from the IP configured.

Once a static NAT entry is setup you may also connect directly to the CSC by using the externally accessible IP address as so:

https://:8443

Keep in mind that allowing external configuration of your firewall is not considered a good security practice.

Thanks

Ryan

View solution in original post

0 Helpful
3 Replies 3

Go to solution
ryan_holland
Level 1
Level 1

‎12-10-2006 09:37 AM

Ajay,

ASDM will try to connect to the IP address assigned to the CSC, your options would be to VPN into the private network or create a static NAT entry that maps the internal 192.168.x.x address to a routable address that can be accessed from the external network. Then when connecting to the CSC you will get a dialog that asks what IP to use when connecting to the CSC, choose the radio button that will allow you to enter an IP that differs from the IP configured.

Once a static NAT entry is setup you may also connect directly to the CSC by using the externally accessible IP address as so:

https://:8443

Keep in mind that allowing external configuration of your firewall is not considered a good security practice.

Thanks

Ryan

0 Helpful

Go to solution
ajay_dand
Level 1
Level 1
In response to ryan_holland

‎12-10-2006 10:08 AM

Thanks Ryan for your comments. I've another question regarding the features of CSC TrendMicro InterScan. However, I do not know if this is the right forum to ask.

0 Helpful

Go to solution
ryan_holland
Level 1
Level 1
In response to ajay_dand

‎12-10-2006 11:01 AM

Feel free to send me an email with your questions.

Thanks

Ryan

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card