Dane,
> -----Original Message-----
> From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of
> Dane Newman
> Sent: Saturday, December 12, 2009 3:23 AM
>
> Is there a way to source my snmp traffic from an asa interface so it
> goes
> down my site to site vpn tunnel like on the ios router ?
>
If you check out the archives, Keegan and I discussed this last month. As you already found out, there is no source interface command. If the inside interface of your ASA is part of the site to site ACL, you can use 'management-access inside' and point your NTP, SNMP query and trap, syslog, and telnet targets to inside address that match the other end of the tunnel.
I admit that the method listed above is spotty at times, the other alternative is to use specific ACLs that source the outside interface and include them in your interesting ACL. I would not recommend doing only SNMP traps in this fashion as you'll lose the first trap each time one is fired.
Here is the link for the latter config:
HTH
-ryan
Blogs and organic groups at http://www.ccie.net
Received on Sat Dec 12 2009 - 14:18:02 ART
This archive was generated by hypermail 2.2.0 : Sat Jan 02 2010 - 11:11:08 ART