Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
552
Views
5
Helpful
2
Replies

ASA management interface

mohammad saeed
Level 5
Level 5

‎07-11-2015 08:48 PM - edited ‎02-21-2020 05:31 AM

Hi Guys,

 

I have one ASA and I want to access to ASA management interface through my inside network, can I do that instead of connect dedicated cable from Management interface to PC?

 

 

Thanks for all

 

Mohammad Saeed

0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎07-12-2015 07:23 PM

You can, but it is challenging to be on a remote subnet. The problem is that as of the current ASA software (i.e version 9.4 or earlier) there is only a single routing table for the ASA.

So it can be challenging to setup routes telling the ASA to reach a given subnet using the management interface when that same subnet may need its data to flow in and out of the inside interface for the non-management functions of the ASA.

You also need to tell the ASA to allow management from subnets not on the same subnet as the management interface. 

nspasov
Cisco Employee
Cisco Employee

‎07-13-2015 10:30 PM

Marvin is spot on! (+5). I would also suggest that you either use a dedicated cable and subnet for the management interface or allow management traffic via the "inside" interface. Be careful as Marvin pointed out there is only a single routing table and assigning an IP address from the same range on your management and Inside interface can cause you to actually drop traffic. I speak from experience...or lack of :)

 

Thank you for rating helpful posts!

Thank you for rating helpful posts!
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card