Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2694
Views
0
Helpful
5
Replies

ASA 5520 configuration for ASDM

Go to solution
shahid_duet
Level 1
Level 1

‎07-14-2011 06:42 AM - edited ‎03-11-2019 01:58 PM

Dear boss

My ASA confi are as follows. i cant to do use ASDM, HTTP, Telnet from my local interface and ip 192.168.0.46 &14.

My ASDM is ok as i can connect other ASA.

what mismatch here i cant understant.

Pls suggest me

hostname ciscoasa

enable password DtMryzGjBATmCElZ encrypted

passwd 2KFQnbNIdI.2KYOU encrypted

names

dns-guard

!

interface GigabitEthernet0/0

nameif local

security-level 50

ip address 192.168.0.243 255.255.255.0

!

interface GigabitEthernet0/1

shutdown

no nameif

no security-level

no ip address

!

interface GigabitEthernet0/2

shutdown

no nameif

no security-level

<--- More --->

no ip address

!

interface GigabitEthernet0/3

shutdown

no nameif

no security-level

no ip address

!

interface Management0/0

shutdown

no nameif

no security-level

no ip address

!

ftp mode passive

pager lines 24

mtu local 1500

no failover

asdm image disk0:/asdm-508.bin

no asdm history enable

arp timeout 14400

timeout xlate 3:00:00

timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02

timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00

<--- More --->

timeout mgcp-pat 0:05:00 sip 0:30:00 sip_media 0:02:00

timeout uauth 0:05:00 absolute

username shahid password vEU4vmtHw.zQ5N5M encrypted privilege 15

aaa authentication enable console LOCAL

aaa authentication http console LOCAL

aaa authentication telnet console LOCAL

aaa authentication serial console LOCAL

http server enable

http 192.168.0.46 255.255.255.255 local

http 192.168.0.14 255.255.255.255 local

http redirect local 80

no snmp-server location

no snmp-server contact

snmp-server enable traps snmp authentication linkup linkdown coldstart

crypto ipsec security-association lifetime seconds 28800

crypto ipsec security-association lifetime kilobytes 4608000

telnet 192.168.0.46 255.255.255.255 local

telnet 192.168.0.14 255.255.255.255 local

telnet timeout 5

ssh timeout 5

console timeout 0

!

class-map inspection_default

match default-inspection-traffic

<--- More --->

!

!

policy-map global_policy

class inspection_default

  inspect dns maximum-length 512

  inspect ftp

  inspect h323 h225

  inspect h323 ras

  inspect netbios

  inspect rsh

  inspect rtsp

  inspect skinny

  inspect esmtp

  inspect sqlnet

  inspect sunrpc

  inspect tftp

  inspect sip

  inspect xdmcp

!

service-policy global_policy global

Cryptochecksum:d2ae5901146dac572879a89d1deae780

: end

ciscoasa(config)#

Pls help me

shahid

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Anu M Chacko
Cisco Employee
Cisco Employee
In response to shahid_duet

‎07-14-2011 07:01 AM

Hi Shahid,

What is the error you see when you try to access this IP? Are you using the ASDM launcher or the browser to open ASDM? Check the Java version which is installed on the  PC. Also, check if you are able to open ASDM using another browser.

Please check if there is connectivity using pings between the PC and the ASA local interface.

Let me know.

Regards,

Anu

View solution in original post

0 Helpful
5 Replies 5

Go to solution
Anu M Chacko
Cisco Employee
Cisco Employee

‎07-14-2011 06:46 AM

Hi Shahid,

What is the ASA version?

Regards,

Anu

0 Helpful

Go to solution
shahid_duet
Level 1
Level 1
In response to Anu M Chacko

‎07-14-2011 06:55 AM

ASA version 7.0(8)

ASDM version 5.0

0 Helpful

Go to solution
Anu M Chacko
Cisco Employee
Cisco Employee
In response to shahid_duet

‎07-14-2011 07:01 AM

Hi Shahid,

What is the error you see when you try to access this IP? Are you using the ASDM launcher or the browser to open ASDM? Check the Java version which is installed on the  PC. Also, check if you are able to open ASDM using another browser.

Please check if there is connectivity using pings between the PC and the ASA local interface.

Let me know.

Regards,

Anu

0 Helpful

Go to solution
shahid_duet
Level 1
Level 1
In response to Anu M Chacko

‎07-14-2011 08:04 AM

Dear Chacko

thanks. it working.

I have assm-20 module. i put ip in mgt interface. when i click at IPS option at gui it appear management host add and port.

what will be the port number ?

then tel me step by step pls .

ciscoasa# show module all

Mod Card Type                                    Model              Serial No.

--- -------------------------------------------- ------------------ -----------

  0 ASA 5520 Adaptive Security Appliance         ASA5520            JMX1235L0PX

  1 ASA 5500 Series Security Services Module-20  ASA-SSM-20         JAF1228BPLR

Mod MAC Address Range                 Hw Version   Fw Version   Sw Version

--- --------------------------------- ------------ ------------ ---------------

  0 0022.5597.0be7 to 0022.5597.0beb  2.0          1.0(11)4     7.0(8)

  1 001d.7032.58b7 to 001d.7032.58b7  1.0          1.0(11)4     6.0(4)E1

Mod Status             Data Plane Status

--- ------------------ ---------------------

  0 Up Sys             Not Applicable

  1 Up                 Up

ciscoasa#

shahid

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card