Table of Contents
Advertisement
Additional Help Topics
Learn More about Port Forwarding Servers
Cisco Router and Security Device Manager 2.5 User's Guide
21-46
policy_1 provides the basic Cisco IOS SSL VPN service of URL mangling, and
specifies that a full tunnel be established between clients and the router. No other
features are configured. You can add features to policy_1, such as Thin Client and
Common Internet File System by choosing Configure advanced features for an
existing SSL VPN, choosing Asia and policy_1 in the Select the Cisco IOS
SSL VPN user group window, then choosing the features in the Advanced
Features window. Additional URL lists can also be configured in this wizard.
You can create a new group policy under context "Asia" by choosing Add a new
policy to an existing SSL VPN for a new group of users.
You can customize settings and the policies configured for context Asia by
choosing Asia in the context list and clicking Edit. The Edit SSL VPN Context
Asia window displays a tree that allows you to configure more resources for the
context, and to edit and configure additional policies. You can edit the settings for
gateway_1 by clicking SSL VPN Gateways under the SSL VPN node, selecting
gateway_1, then clicking Edit.
Port forwarding enables a remote Cisco IOS SSL VPN user to connect to static
ports on servers with private IP addresses on the corporate intranet. For example,
you can configure port forwarding on a router to give remote users Telnet access
to a server on the corporate intranet. To configure port forwarding, you need the
following information:
The IP address of the server.
•
•
The static port number on the server.
The remote port number for the client PC. In the dialog, Cisco SDM supplies
•
a port number that is safe to use.
To allow users to use Telnet to connect to a server with the IP address 10.0.0.100
(port 23) for example, you would create a port mapping entry with the following
information:
Server IP address: 10.0.0.100
Server port on which user is connecting: 23
Port on client PC: Cisco SDM-supplied value. 3001 for this example.
Description: SSL VPN Telnet access to server-a. This description will be on the
portal.
Chapter 21
Cisco IOS SSL VPN
OL-4015-12
Advertisement
Table of Contents
Troubleshooting
