08-12-2010 11:26 AM - edited 03-11-2019 11:24 AM
We have a functioning tunnel set up between two ASA5510s. Traffic passes normally between the two. Both ASAs are configured for aaa, ssh, and http access. I can ping the outside ASA address of either ASA from the other's ASA, but neither ssh, nor ASDM access works from either network to the other ASA.. What do I need to look for in the configuration? I did not set these up originally and the configurations are rather large. Thanx!
08-16-2010 07:00 AM
Well, you came up with something there! I changed the command to use the
In_Laker interface and started ASDM to the remote's address. After the
login screen, ASDM said it was loading and then the ASDM start splash screen
disappeared nothing else happened. At least we're getting somewhere, but
why would that happen. Is it a case of mismatched versions of software?
Any additional clues on this issue would be appreciated. I had done some
preliminary research which seemed to point to a specific version of Java,
but I have since corrected that. Thank you!
Regards,
Wolf
08-16-2010 08:06 AM
I set up the packet tracer and have attached the output. Unfortunately, the
remote OS does not have this capability. I am trying to convince my manager
that we need to upgrade the OS and ASDM version so they are at the same
revision level as our local ASA. I configured the captures on both
machines. Am I supposed to manually start a capture? I've used Wireshark
and dedicated sniffers in the past, but I have not used the ASA to capture
packets yet. Thanx!
Regards,
Wolf
08-16-2010 08:26 AM
looks like inside route is necessary.
main site
route inside 10.0.0.0 255.0.0.0 (your LAN switch IP addy) 1
route inside 10.0.0.0 255.0.0.0 10.10.30.x 1
route inside 10.10.250.0 255.255.255.248 (your remote switch IP addy) 1
route inside 10.10.250.0 255.255.255.248 10.2.1.x 1
On Remote site
route inside 10.0.0.0 255.0.0.0 (your LAN switch IP addy) 1
route inside 10.0.0.0 255.0.0.0 10.2.1.x 1
Where does Norlight PPP goes to?
properly enable your http and ssh inside access on both firewalls.
Thx,
Eric
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide