Cisco ASA Series Cli Configuration Manual page 1865
Software version 9.0 for the services module
Hide thumbs
Also See for ASA Series:
- Configuration manual (429 pages) ,
- Getting started (31 pages) ,
- Mount and connect (12 pages)
Table of Contents
Advertisement
Chapter 1
Configuring Clientless SSL VPN
Command
ciscoasa(config-webvpn)# [no] smart-tunnel network
<network name> ip <ip> <netmask>
ciscoasa(config-webvpn)# [no] smart-tunnel network
<network name> host <host mask>
<network name>Name of network to apply to tunnel
policy
<ip address>IP address of a network
<netmask>Netmask of a network
<host mask>Hostname mask, such as *.cisco.com
Example:
ciscoasa(config-webvpn)# smart-tunnel network
inventory ip 10.5.2.2
ciscoasa(config-webvpn)# smart-tunnel network
inventory host www.example.com
ciscoasa(config-group-webvpn)# smart-tunnel
tunnel-policy tunnelspecified inventory
(Optional)
ciscoasa(config-group-webvpn)# homepage value
http://www.example.com
ciscoasa(config-group-webvpn)# homepage
use-smart-tunnel
(Optional)
ciscoasa(config-webvpn)# smart-tunnel
notification-icon
Creating a Smart Tunnel Auto Sign-On Server List
Purpose
Applies a tunnel policy to a group-policy/user
policy. One command specifies host and the other
specifies network IPs; use only one.
Smart tunnel tunnel policy configuration is a good
option when a vendor wants to provide a partner
with clientless access to an internal inventory server
page upon login without going through the clientless
portal first. Creates a tunnel policy that contains
only one host (assuming the inventory pages are
hosted at www.example.com (10.5.2.2), and you
want to configure both IP address and name for the
hosts.
Applies the tunnel-specified tunnel policy to the
partner's group policy.
Specifies the group policy home page and enables
smart tunnel on it. Without writing a script or
uploading anything, an administrator can specify
which homepage to connect with via smart tunnel.
By default, configuration of a smart tunnel
application is not necessary because all processes
initiated by the browser with smart tunnel enabled
have access to the tunnel. However, because no
portal is visible, you may want to enable the logout
notification icon.
Cisco ASA Series CLI Configuration Guide
Configuring Application Access
1-57
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
