This chapter shows you how to set up secure SSL VPN access for remote user login.
20.1 SSL Access Policy
An SSL access policy allows the UAG to perform the following tasks:
• limit user access to specific applications or files on the network.
• allow user access to specific networks.
• assign private IP addresses and provide DNS/WINS server information to remote users to access
internal networks.
20.1.1 SSL Application Objects
SSL application objects specify an application type and server that users are allowed to access
through an SSL tunnel. See
20.1.2 SSL Access Policy Limitations
You cannot delete an object that is used by an SSL access policy. To delete the object, you must
first unassociate the object from the SSL access policy.
20.2 SSL VPN Commands
The following table describes the values required for some SSL VPN commands. Other values are
discussed with the corresponding commands.
Table 74 Input Values for SSL VPN Commands
LABEL
profile_name
address_object
application_object
UAG CLI Reference Guide
C
Chapter 30 on page 191
DESCRIPTION
The descriptive name of an SSL VPN access policy. You may use up to 31 characters
("a-z", A-Z", "0-9") with no spaces allowed.
The name of an IP address (group) object. You may use 1-31 alphanumeric
characters, underscores(
), or dashes (-), but the first character cannot be a number.
_
This value is case-sensitive.
The name of an SSL application object. You may use up to 31 characters ("0-9", "a-z",
"A-Z", "-" and "_"). No spaces are allowed.
HAPTER
for how to configure SSL application objects.
2 0
SSL VPN
137