Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
897
Views
5
Helpful
2
Replies

1710 tftp uploads through tunnel fail

drumrb0y
Level 1
Level 1

‎08-17-2004 12:32 PM - edited ‎02-20-2020 11:34 PM

I'm attempting to upgrade the IOS image on a 1710 router connected via VPN tunnel to a 3000 concentrator; it routes all inside traffic to the tunnel, but since the 1710 attempts to communicate itself from the outside interface, it cannot see the TFTP server I have set up on the inside network on the concentrator side of the tunnel - it tries to out the wrong interface... I've tried to configure a source-interface to force the 1710 to look to the tunnel, but the inside interface will look inbound to the internal remote network, not the internal network across the VPN tunnel, where I want it to go

What is the best way to have the 1710 reach my TFTP server across the VPN tunnel, instead of going through the outside interface and exposing the TFTP server to the Internet?

Thanks for your input,

Marc

0 Helpful
2 Replies 2

gfullage
Cisco Employee
Cisco Employee

‎08-17-2004 08:35 PM

You should just need the following:

ip tftp source-interface

The 1710 will then source all TFTP packets from the inside interface, and as long as that is included in the crypto ACL then it will be encrypted and sent over the tunnel.

cscherb
Level 1
Level 1
In response to gfullage

‎11-30-2004 04:52 AM

Uhhh .. great !

Is a similar command available in PIX OS for outgoing scep (simple certificate enrollment protocoll) traffic ?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card