Greetings,
I have been struggling to get SSH up on management-only interface (M0/0) on an ASA 5510. It has SSH working on an outside interface, but not in M0/0.
After setting up the interface, I can ping it (only after I declare it a management interface from ASDM oddly), but SSH is closed.
My question at this point, is this even possible?
Here are the relevant parts of my config; let me know if there is any other details needed to figure out this issue, if in fact SSH "is" possible on a management interface:
firewall1#sh run all int management 0/0
!
interface Management0/0
speed auto
duplex full
nameif management
security-level 0
ip address X.X.X.X 255.255.255.252
ospf cost 10
delay 10
firewall1# show run | inc ssh
aaa authentication ssh console LOCAL
aaa authentication ssh console LOCAL
ssh ME 255.255.255.252 Outside
ssh ME 255.255.255.252 management
ssh timeout 60
ssh version
firewall1# sh int m0/0
Interface Management0/0 "management", is up, line protocol is up
Hardware is i82557, BW 100 Mbps, DLY 100 usec
Full-Duplex(Full-duplex), Auto-Speed(100 Mbps)
MAC address 001e.f760.XXXX, MTU 1500
IP address X.X.X.X, subnet mask 255.255.255.252
5540 packets input, 430250 bytes, 0 no buffer
Received 116 broadcasts, 0 runts, 0 giants
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
0 L2 decode drops
5085 packets output, 325440 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 late collisions, 0 deferred
0 lost carrier, 0 no carrier
input queue (curr/max packets): hardware (0/1) software (0/20)
output queue (curr/max packets): hardware (0/20) software (0/1)
Traffic Statistics for "management":
5536 packets input, 352374 bytes
5085 packets output, 203100 bytes
5353 packets dropped
1 minute input rate 0 pkts/sec, 0 bytes/sec
1 minute output rate 0 pkts/sec, 0 bytes/sec
1 minute drop rate, 0 pkts/sec
5 minute input rate 0 pkts/sec, 1 bytes/sec
5 minute output rate 0 pkts/sec, 0 bytes/sec
5 minute drop rate, 0 pkts/sec
Management-only interface. Blocked 2 through-the-device packets
If anyone can point me in the right direction, I would greatly appreciate it.
Thanks in advance!
I have been struggling to get SSH up on management-only interface (M0/0) on an ASA 5510. It has SSH working on an outside interface, but not in M0/0.
After setting up the interface, I can ping it (only after I declare it a management interface from ASDM oddly), but SSH is closed.
My question at this point, is this even possible?
Here are the relevant parts of my config; let me know if there is any other details needed to figure out this issue, if in fact SSH "is" possible on a management interface:
firewall1#sh run all int management 0/0
!
interface Management0/0
speed auto
duplex full
nameif management
security-level 0
ip address X.X.X.X 255.255.255.252
ospf cost 10
delay 10
firewall1# show run | inc ssh
aaa authentication ssh console LOCAL
aaa authentication ssh console LOCAL
ssh ME 255.255.255.252 Outside
ssh ME 255.255.255.252 management
ssh timeout 60
ssh version
firewall1# sh int m0/0
Interface Management0/0 "management", is up, line protocol is up
Hardware is i82557, BW 100 Mbps, DLY 100 usec
Full-Duplex(Full-duplex), Auto-Speed(100 Mbps)
MAC address 001e.f760.XXXX, MTU 1500
IP address X.X.X.X, subnet mask 255.255.255.252
5540 packets input, 430250 bytes, 0 no buffer
Received 116 broadcasts, 0 runts, 0 giants
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
0 L2 decode drops
5085 packets output, 325440 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 late collisions, 0 deferred
0 lost carrier, 0 no carrier
input queue (curr/max packets): hardware (0/1) software (0/20)
output queue (curr/max packets): hardware (0/20) software (0/1)
Traffic Statistics for "management":
5536 packets input, 352374 bytes
5085 packets output, 203100 bytes
5353 packets dropped
1 minute input rate 0 pkts/sec, 0 bytes/sec
1 minute output rate 0 pkts/sec, 0 bytes/sec
1 minute drop rate, 0 pkts/sec
5 minute input rate 0 pkts/sec, 1 bytes/sec
5 minute output rate 0 pkts/sec, 0 bytes/sec
5 minute drop rate, 0 pkts/sec
Management-only interface. Blocked 2 through-the-device packets
If anyone can point me in the right direction, I would greatly appreciate it.
Thanks in advance!
