Cisco ASA_5525 (Remote Access)

Srinivas N · ‎12-14-2015

Hi Friends,

We have Cisco 5525 ASA Firewall, which is on Remote location and working fine.

my equerry is if firewall fails/ reset, how can I login and workout,

can use some thing auxiliary port or any latest process is there to login firewall in such worst condition...

Please do the needful with configuration...

Thanks & Regards, Srinivas. N.

johnlloyd_13 · ‎12-15-2015

hi,

an OOB server will be helpful in such scenario.

if this is not within your budget, you can use a PC with its IP set to auto/DHCP and connect either directly to the management (MGMT) interface or use a switch having the same VLAN for the PC and ASA management interface.

the ASA management IP defaults to 192.168.1.1/24, which you could access via HTTP/ASDM and restore the config.

Akshay Rastogi · ‎12-16-2015

Hi Srinivas,

In case the device is inaccessible, then the best way would be to have console access of the device. Serial cable needs to be used to take access of the device :

http://www.cisco.com/c/en/us/td/docs/security/asa/hw/maintenance/5500xguide/5500xhw/asa_overview.html#pgfId-1088547

In case you loose access to ASA through SSH or any remote access, it would give you clear indication of what is happening to ASA and you could make changes accordingly.

Usually for remote access of a device, Customers usually keeps the serial port access through a Terminal Server. They perform Telnet to the socket(ip and port combination) which redirect traffic to Console/Serial port of the Device.

Hope it helps.

Regards,

Akshay Rastogi

Remember to rate helpful posts.