Cisco ASA 5505 Configuration Manual page 1419

Asa 5500 series

Hide thumbs Also See for ASA 5505:

Getting started manual (168 pages)

Administrator's manual (118 pages)

Hardware installation manual (82 pages)

Table of Contents

General VPN Setup

Firewall Mode

DTLS Settings

Enabling Datagram Transport Layer Security (DTLS) allows the AnyConnect VPN client establishing

an SSL VPN connection to use two simultaneous tunnels—an SSL tunnel and a DTLS tunnel. Using

DTLS avoids latency and bandwidth problems associated with some SSL connections and improves the

performance of real-time applications that are sensitive to packet delays.

If you do not enable DTLS, AnyConnect client users establishing SSL VPN connections connect with

an SSL VPN tunnel only.

The following table shows the modes in which this feature is available:

Firewall Mode

SSL VPN Client Settings

The Cisco AnyConnect VPN client provides secure SSL connections to the adaptive security appliance

for remote users. The client gives remote users the benefits of an SSL VPN client without the need for

network administrators to install and configure clients on remote computers.

Without a previously-installed client, remote users enter the IP address in their browser of an interface

configured to accept SSL VPN connections. Unless the adaptive security appliance is configured to

redirect http:// requests to https://, users must enter the URL in the form https://<address>.

If you need to redirect http:// requests to https://, go to Configuration > Remote Access VPN >

Advanced, then click HTTP Redirect. Choose the interface you want to redirect, then click Edit to

display the Edit HTTP/HTTPS Settings dialog box. Check the Redirect HTTP to HTTPS check box,

and change the HTTP Port value, if necessary. Click OK to close this dialog box, then click Apply to

save your settings.

Security Context

Transparent Single

Interface—Displays a list of interfaces on the adaptive security appliance.

DTLS Enabled—Click to enable DTLS connections with the AnyConnect client on the interfaces.

UDP Port (default 443)—(Optional) Specify a separate UDP port for DTLS connections.

Security Context

Transparent Single

Cisco ASA 5500 Series Configuration Guide using ASDM

DTLS Settings

Show Quick Links

Chapters

Table of Contents

Asa 5510 Asa 5540 Asa 5520 Asa 5550 Asa 5580

Cisco ASA 5505 Configuration Manual page 1419

Hide quick links:

Chapters

Related Manuals for Cisco ASA 5505

Related Products for Cisco ASA 5505

This manual is also suitable for:

Table of Contents