EasyManuals Logo

Cisco 5510 - ASA SSL / IPsec VPN Edition Configuration Guide

Cisco 5510 - ASA SSL / IPsec VPN Edition
1822 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #682 background imageLoading...
Page #682 background image
32-10
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 32 Configuring Management Access
Configuring a Management Interface for Management on a Different Interface from the VPN Tunnel Termination
Step 8 Click OK.
The dialog box closes.
Step 9 (Optional) To set ICMP unreachable message limits, set the following options. Increasing the rate limit,
along with enabling the “Decrement time to live for a connection” option on the Configuration > Firewall
> Service Policy Rules > Rule Actions > Connection Settings dialog box, is required to allow a traceroute
through the adaptive security appliance that shows the adaptive security appliance as one of the hops.
Rate Limit—Sets the rate limit of unreachable messages, between 1 and 100 messages per second.
The default is 1 message per second.
Burst Size—Sets the burst rate, between 1 and 10. This keyword is not currently used by the system,
so you can choose any value.
Step 10 Click Apply.
Configuring a Management Interface for Management on a
Different Interface from the VPN Tunnel Termination Interface
If your IPSec VPN tunnel terminates on one interface, but you want to manage the adaptive security
appliance by accessing a different interface, you can identify that interface as a management-access
interface. For example, if you enter the adaptive security appliance from the outside interface, this
feature lets you connect to the inside interface using Telnet; or you can ping the inside interface when
entering from the outside interface.
Restrictions
You can define only one management-access interface.
Detailed Steps
Step 1 From the Configuration > Device Management > Management Access > Management Interface pane,
choose the interface with the highest security (the inside interface) from the Management Access Interface
drop-down list.
Step 2 Click Apply.
The management interface is assigned and the change is saved to the running configuration.
Configuring AAA for System Administrators
This section describes how to enable authentication and command authorization for system
administrators. Before you configure AAA for system administrators, first configure the local database
or AAA server according to Chapter 31, “AAA Server and Local Database Support.
This section includes the following topics:
Configuring Authentication for CLI, ASDM, and enable command Access, page 32-11

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Cli Configuration Guide
Cli Configuration Guide2164 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals