01-18-2013 08:16 AM - edited 03-11-2019 05:48 PM
Hello
I am trying to upgrade a Cisco ASA over an IPSEC VPN tunnel. My FTP server is on the remote side of the VPN tunnel but I am initiating connections from the inside interface of the firewall. I am currently managing the Firewall over the VPN via it's inside interface (using the management-access inside) command. When I try and update via FTP, the connection is going straight out the outside interface (and not across the VPN tunnel)
I have tried upgrading via TFTP but it keeps stopping randomly with (unspecified error) I normally upgrade via FTP though but it's not working in this instance.
Essentially what I am asking, is is there an equivalent command for FTP that there is for TFTP: tftp-server interface ip anyconnect
I need the connections to originate from the inside interface so they traverse the VPN. I am running 7.2.3
Thanks in advance.
01-18-2013 08:47 AM
Hi,
I havent tested this myself other than in L2L VPN situations but would there be a possibility to add the actual VPN endpoint pubpic IP address in the VPN Client configurations and with that enable yourself to transfer files through the VPN Client connection?
Other options I would think would be
I might be able to lab this at some point.
- Jouni
01-18-2013 08:55 AM
Hi Jouni
Thanks a lot for all the suggestions, I do have the option of putting it on a public FTP server but I was looking at ways to do it over the VPN.
I will do some testing.
Thank you
Mark
03-24-2016 12:30 PM
From the remote firewall, to specify the source interface, try this:
copy tftp://1.1.1.1/filename.bin;int=inside flash:
Here is where I got this:
http://www.cisco.com/c/en/us/td/docs/security/asa/asa70/command/reference/cref_txt/c.html#wp1970383
02-06-2018 05:38 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide