EasyManuals Logo
Home>Cisco>Firewall>FirePOWER ASA 5500 series

Cisco FirePOWER ASA 5500 series User Manual

Cisco FirePOWER ASA 5500 series
989 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #745 background imageLoading...
Page #745 background image
38-3
Cisco Security Appliance Command Line Configuration Guide
OL-10088-01
Chapter 38 Configuring SSL VPN Client
Enabling SVC
1,0,0,164
Thu 02/17/2005 20:09:22.43
2 SSL VPN Client(s) installed
Enabling SVC
After installing SVC, you can enable SVC by performing the following steps:
Step 1 Enable WebVPN on an interface using the enable command from webvpn mode:
enable interface
For example:
hostname(config)# webvpn
hostname(config-webvpn)# enable outside
Step 2 From webvpn mode, enter the svc enable command to enable the security appliance to download SVC
images to remote computers:
svc enable
For example:
hostname(config-webvpn)# svc enable
Step 3 Configure a method of address assignment. You can use DHCP, and/or user-assigned addressing. You
can also create a local IP address pool using the ip local pool command from webvpn mode:
ip local pool poolname startaddr-endaddr mask mask
The following example creates the local IP address pool vpn_users:
hostname(config-webvpn)# ip local pool vpn_users 209.165.200.225-209.165.200.254
mask 255.255.255.224
Step 4 Assign IP addresses to a tunnel group. One method you can use to do this is to configure a local IP
address pool with the address-pool command from general-attributes mode:
address-pool poolname
To do this, first enter the tunnel-group name general-attributes command to enter general-attributes
mode. Then specify the local IP address pool using the address-pool command.
In the following example, the user configures the existing tunnel group telecommuters to use the address
pool vpn_users created in step 3:
hostname(config)# tunnel-group telecommuters general-attributes
hostname(config-tunnel-general)# address-pool vpn_users
Step 5 Assign a default group policy to the tunnel group with the default-group-policy command from tunnel
group general attributes mode:
default-group-policy name
In the following example, the user assigns the group policy sales to the tunnel group telecommuters:
hostname(config-tunnel-general)# default-group-policy sales
Step 6 Create and enable a group alias that displays in the group list on the WebVPN Login page using the
group-alias command from tunnel group webvpn attributes mode:
group-alias name enable

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco FirePOWER ASA 5500 series and is the answer not in the manual?

Cisco FirePOWER ASA 5500 series Specifications

General IconGeneral
BrandCisco
ModelFirePOWER ASA 5500 series
CategoryFirewall
LanguageEnglish

Related product manuals