Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
207
Views
0
Helpful
1
Replies

No SSH or HTTPS over PIX to PIX VPN

galioto
Level 1
Level 1

‎10-07-2004 10:36 AM - edited ‎02-21-2020 01:23 PM

Hi everyone,

I have a PIX 501 to a PIX 506 VPN set up. According to the PDM on each, there is 1 IPSEC and 1 IKE tunnel open.

I CAN ping from each location to the other location. I can also connect via HTTP to devices on each network, like printers or switches.

I'm running into problems when I try to SSH or connect to the PDM via HTTPS. I do have IP addresses enabled for administration.

I can post both PIX configs if needed. I've found one part of the config that I wanted to verify with someone else:

sysopt connection permit-ipsec

crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac

crypto map outside_map 20 ipsec-isakmp

crypto map outside_map 20 match address outside_cryptomap_20

crypto map outside_map 20 set peer 111.222.333.105

crypto map outside_map 20 set transform-set ESP-3DES-MD5

crypto map outside_map interface outside

Something about that just looks wrong to me, like the line "crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac" should be "crypto ipsec transform-set outside_map esp-3des esp-md5-hmac" instead.

Any thoughts?

Thanks,

-- Greg

Labels:
0 Helpful
1 Reply 1

subaa
Level 1
Level 1

‎10-07-2004 10:54 AM

Use the "management interface inside" command.

Details here:

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/cmdref/mr.htm#wp1137951

Bests,

SubAa

0 Helpful
Customers Also Viewed These Support Documents