cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
621
Views
0
Helpful
1
Replies

Cannot access ASDM through VPN

niLuxx
Level 1
Level 1

Dear community,

I have some troubles with my VPN connection. I'm trying to access ASDM (of a ASA 5506) over a Remote to Site VPN connection. My client gets an IP by DHCP (range 192.168.1.0/24) and ASA has IP 192.168.1.1.

I can ping the ASA after establishing the VPN connection, but cannot connect via SSH or ASDM.

 

I already executed the command management-access internal.

ciscoasa# show run management-access

management-access internal

I'm a little bit worried about the usage of the Bridge Virtual Interfaces (BVI). I have a BVI called internal which contains 4 of the physical interfaces with the names internal_1,internal_2,internal_3 and internal_4. Does this maybe have an influence to it?

In ASDM I already activated ASDM and ssh for interface internal_1, but the problem does still exists

1 Reply 1

Josue Brenes
Cisco Employee
Cisco Employee

Hi niLuxx,

There is a limitation on the ASA to do management over ASDM/SSH if the traffic is coming from a VPN and you try to reach an interface which is part of a BVI interface:

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCve82307

 

The workaround is:

Use a L3 interface for management-access through a S2S tunnel.

 

Rate if it helps.

 

Regards,

Josue Brenes

TAC - VPN Engineer.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: