cant ssh to inside interface, only working through the management inf

tokis · ‎04-27-2023

cant ssh to inside interface, only working through the management interface
IPs are changed into not actual values
My source IP is coming from 2.2.x.x from another site and the connectivity we have is via SDWAN.

We have below configuration on the ASA:
ssh 2.2.0.0 255.255.0.0 Inside
ssh 2.2.0.0 255.255.0.0 management

ASA-17-1/pri/act# show ip
System IP Addresses:
Interface Name IP address Subnet mask Method
GigabitEthernet0/0 Outside1 x.x.xxxxxxxxxxx CONFIG
GigabitEthernet0/1 Inside 10.14.1.1 255.255.255.0 CONFIG
GigabitEthernet0/2 DMZ901 10.15.16.0 255.255.0.0 CONFIG
Management0/0 management 10.15.17.1 255.255.255.192 CONFIG

ASA-17-1/pri/act# show nameif
Interface Name Security
GigabitEthernet0/0 Outside1 0
GigabitEthernet0/1 Inside 100
GigabitEthernet0/2 DMZ901 90
Management0/0 management 10

To fix the issue, should I do the following instead?
no ssh 2.2.0.0 255.255.0.0 management

Will I get disconnected on the current ssh to the managemen IP if i configured that?

MHM Cisco World · ‎04-27-2023

Try under inside interface add

Management-access

And check again

tokis · ‎04-27-2023

thank you I will try that tomorrow once I have secured the console access as I am working remotely.
So far I have tried yesterday is (config)# management-access inside
but its still not working

Knassi · ‎04-28-2023

There might be an ACL putting restriction on the inside interface. The IP you are connecting from may not be authorized to get in via the inside interface