Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
286
Views
0
Helpful
2
Replies

SSH from outside through FW to inside switch

john.wright
Level 3
Level 3

‎05-20-2016 10:03 AM - edited ‎03-08-2019 05:51 AM

We have firewall setup to allow ssh from a single public address to one of our switches inside the firewall.

I had Cisco TAC examine acl rules and all is well.

However the ssh connection always times out.

SSH works fine inside.

Anybody know what could be the problem?

Labels:
0 Helpful
2 Replies 2

Tim Y
Level 1
Level 1

‎05-20-2016 11:26 AM

Hi,

Can you post the configuration? I'd want to verify the ACL and NAT.

If those check out then I'd ask if Unicase RPF is enabled, if the routing inside is symmetrical, if there are any ACLs configured on the switch that prevent SSH from a certain source IP (the NAT'd IP)

Regards,

Tim

0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to Tim Y

‎05-20-2016 11:49 AM

We would also want to check to determine whether access-class was configured, and if so what it permits and what it denies, which might be what Tim meant about ACLs or might be different. So posting the config would be helpful.

HTH

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card