Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
225
Views
0
Helpful
1
Replies

Site to site tunnel traffic with source port

Sumit Khurana
Level 1
Level 1

‎12-14-2015 11:48 PM

Hi,

I have setup a site to site tunnel in ASA 5505 with external vendor for one of our DMZ server, have restricted inbound / outbound access on port 22 only through a group policy. 

All works when server tries to communicate with external server with source manually defining port 22 as source and destination port 22. with random source port communication get denied.

Can someone please help if they seen the similar issue before or I missed any config in ASA?

Thanks

Labels:
0 Helpful
1 Reply 1

ashok_boin
Level 5
Level 5

‎12-15-2015 02:08 AM

Hi Sumit,

Looks like you have only allowed the traffic to/from 22 as per your mail.

Can you please check the following if you miss anything?

http://www.cisco.com/c/en/us/support/docs/cloud-systems-management/configuration-professional/112153-ccp-vpn-asa-router-config-00.html

Ashok.


With best regards...
Ashok
0 Helpful
Customers Also Viewed These Support Documents