Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1385
Views
0
Helpful
3
Replies

Telnet to Firewall outside interface over Internet

Go to solution
Ramu Ch
Level 1
Level 1

‎11-20-2010 09:08 AM - edited ‎03-11-2019 12:12 PM

Hi Team,

Hope all are doing well.

Here my issue is i would not be able access ASA 5510 outside interface over Internet eventhough i made a configuration entry of Telnet ans SSh from outside as below

#telnet 0.0.0.0 0.0.0.0 outside

#ssh 0.0.0.0 0.0.0.0 outside

And also i given for Exclusive public IP address for Telnet /SSH,those were not accepted. Is there any way to access Firewall boxes outside Interface over Internet so that i can conect from my Home at least SSH access in the view of security.

Regards

Ramu

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Kureli Sankar
Cisco Employee
Cisco Employee

‎11-20-2010 09:30 AM

Ramu,

Telnet to the lowest security interface is not allowed by default - This is by design and cannot be changed.

As far as ssh is concerned you should be able to.

Make sure you have the following configured.

1. rsa key pair

2. username

3. aaa authen

conf t

cry key generate rsa modulus 1024

username cisco pass cisco priv 15

aaa authen ssh console LOCAL

aaa authen en console LOCAL

refer this link: http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/access_management.html#wp1042250

-KS

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Kureli Sankar
Cisco Employee
Cisco Employee

‎11-20-2010 09:30 AM

Ramu,

Telnet to the lowest security interface is not allowed by default - This is by design and cannot be changed.

As far as ssh is concerned you should be able to.

Make sure you have the following configured.

1. rsa key pair

2. username

3. aaa authen

conf t

cry key generate rsa modulus 1024

username cisco pass cisco priv 15

aaa authen ssh console LOCAL

aaa authen en console LOCAL

refer this link: http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/access_management.html#wp1042250

-KS

0 Helpful

Go to solution
Ramu Ch
Level 1
Level 1
In response to Kureli Sankar

‎11-20-2010 09:44 PM

Tks

Madam.

Can u Expalin for my undestanding Each command How it works when packet arrives to Firewalll over Internet after configuration.

Waht is RSA Key and waht is the purpose,Meanwhile i will google it those topics.

How can i rate this Post,I want to give Max rate.

Thanks

Ramu

0 Helpful

Go to solution
Kureli Sankar
Cisco Employee
Cisco Employee
In response to Ramu Ch

‎11-21-2010 05:49 AM

Ramu,

I see that you found how to rate the post and mark it solved. Thanks for doing that.

You should be able to see the steps here:

https://supportforums.cisco.com/docs/DOC-6022#I_posted_a_question_how_do
_I_mark_a_reply_as_Correct_Answer

You can read command reference here: http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/c5.html#wp2237673

I put a link about that would take you directly to "cry key gen" command but, if you scroll up you can switch to read about other commands. They are all alphabatically sorted.

-KS

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card