Cisco ASA Series Cli Configuration Manual page 1874

Software version 9.0 for the services module

Hide thumbs Also See for ASA Series:

Table of Contents

Configuring Port Forwarding

tunnel-group webvpn

(Required only if you are using a domain name other than the

default one [DefaultDNS])

asa2(config-dns-server-group)# exit

asa2(config)# tunnel-group DefaultWEBVPNGroup

webvpn-attributes

asa2(config-tunnel-webvpn)# dns-group example.com

Adding Applications to Be Eligible for Port Forwarding

The clientless SSL VPN configuration of each ASA supports port forwarding lists, each of which

specifies local and remote ports used by the applications for which you want to provide access. Because

each group policy or username supports only one port forwarding list, you must group each set of

applications to be supported into a list. To display the port forwarding list entries already present in the

ASA configuration, enter the following commands:

Detailed Steps

show run webvpn port-forward

Cisco ASA Series CLI Configuration Guide

Configuring Clientless SSL VPN

Switches to tunnel-group webvpn configuration

Specifies the domain name the tunnel groups will

use. By default, the security appliance assigns the

Default WEBVPNGroup as the default tunnel group

for clientless connections. Follow this instruction if

the ASA uses that tunnel group to assign settings to

the clientless connections. Otherwise, follow this

step for each tunnel configured for clientless

connections.

Displays the port forwarding list entries already

present in the ASA configuration.

Switches to webvpn configuration mode.

Show Quick Links

Chapters

Table of Contents