Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,
is my assumption correct that EasyVPN in client mode does not support autoconnect?
Does someone on the inside network first need to establish the tunnel before one can manage an EasyVPN remote client via https/ssh through a tunnel?
Hi
I have configured an ASA 5506 as an EasyVPN-remote where the tunnel terminates on a BVI.
When configuring management access i am getting the following warning messages:
ASA(config)# http 10.1.1.0 255.255.255.0 inside
WARNING: Https on BVI works ...
From:
Firepower Management Center Configuration Guide, Version 6.2.2
Your purchase of a managed device that uses Classic Licenses automatically includes Control and Protection licenses.
These licenses are perpetual, but you must also purchase a ...
Management Access on BVI was only recently added with version 9.9.2.
See "History for Management Access" in:
https://www.cisco.com/c/en/us/td/docs/security/asa/asa99/configuration/general/asa-99-general-config/admin-management.html
No challenge at all. This is actually the default configuration (ASA 9.7 and later) after "configure factory-default"
!
interface GigabitEthernet1/1
bridge-group 1
nameif bvi1-1
security-level 100
!
interface GigabitEthernet1/4
nameif bvi1-4
sec...
Unfortunately, the documentation seems to mention auto-connect only in the context of Network Extension mode. I've yet have to find some documentation for how the tunnel-initiation and management works in detail.
Thanks!
