SSL WebVPN - NetwaxLab

Breaking

Facebook Popup

BANNER 728X90

Wednesday, April 8, 2015

SSL WebVPN

SSL WebVPN Topology
For Thick Client

webvpn
 svc image flash:/svc.pkg
 svc enables
 port 80
 enable outside
 tunnel-group admin general-attributes
  default-group-policy grp1
 tunnel-group-list enable
 exit

username cisco password cisco

username admin password cisco
username admin attributes
 group-lock value admin
 exit

http server enable

ip local pool pool1 10.10.10.1-10.10.10.100

access-list STADMIN standard permit 192.168.10.0 255.255.255.0
access-list vpn-filter permit tcp 10.10.10.0 255.255.255.0 host 192.168.10.100 eq 80

group-policy grp1 internal
group-policy grp1 attributes
 split-tunnel-policy tunnelspecified
 split-tunnel-network-list value stadmin
 vpn-filter value vpn-filter
 address-pools value pool1
 vpn-tunnel-protocol ssl-client ssl-clientless

 webvpn
  svc ask enable                                                           * its by-default on
  svc keep-installer installed
  exit
 exit

tunnel-group admin type remote-access
tunnel-group admin webvpn-attributes
 group-alias admin enable
 exit

Admin

ip http server
ip http authentication local
username cisco password admin

Mgmt

ip http server
ip http authentication local

username cisco password mgmt

----
Read more
at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)