Chapter 64
General VPN Setup
Firewall Mode
Routed
•
Dead Peer Detection
Dead Peer Detection (DPD) ensures that the security appliance (gateway) or the client can quickly detect
a condition where the peer is not responding, and the connection has failed.
Fields
•
•
Modes
The following table shows the modes in which this feature is available:
Firewall Mode
Routed
•
Customization
Fields
•
•
•
Modes
The following table shows the modes in which this feature is available:
OL-20339-01
Security Context
Transparent Single
—
•
Gateway Side Detection—Uncheck the Disable check box to specify that DPD is performed by the
security appliance (gateway). Enter the interval, from 30 to 3600 seconds, with which the security
appliance performs DPD.
Client Side Detection—Uncheck the Disable check box to specify that DPD is performed by the
client. Enter the interval, from 30 to 3600 seconds, with which the client performs DPD.
Security Context
Transparent Single
—
•
Portal Customization—Selects the customization to apply to the AnyConnect Client/SSL VPN
portal page. The default is DfltCustomization.
Manage—Opens the Configure GUI Customization objects dialog box, in which you can specify
that you want to add, edit, delete, import, or export a customization object.
Access Deny Message—Specifies a message to display to the end user when the connection is
denied. Select Inherit to accept the message in the default group policy. The default message, if you
deselect Inherit, is: "Login was successful, but because certain criteria have not been met or due to
some specific group policy, you do not have permission to use any of the VPN features. Contact your
IT administrator for more information."
Multiple
Context
System
—
—
Multiple
Context
System
—
—
Cisco ASA 5500 Series Configuration Guide using ASDM
ACL Manager
64-25