Setting up Full tunnel SSL VPN on my Cisco ASA5505

2013-03-20, Lars Sommer

Det følgende er en simpel kort konfiguration af full tunnel VPN, jeg anvender på mine Cisco ASA 5505 firewalls.
Det er primært skrevet for at jeg selv kan huske den 🙂

!Setting up Full tunnel SSL VPN on my Cisco ASA5505

same-security-traffic permit intra-interface

ip local pool VPN-FullTunnel 10.9.9.100-10.9.9.120 mask 255.255.255.0

object network VPN-FullTunnel-Hosts
description Adresser til SSLVPN profil med Full Tunneling
subnet 10.9.9.0 255.255.255.0
nat (outside,outside) dynamic interface
nat (inside,outside) source static any any destination static VPN-FullTunnel-Hosts VPN-FullTunnel-Hosts no-proxy-arp route-lookup

group-policy VPN-FullTunnel internal

group-policy VPN-FullTunnel attributes
dns-server value 8.8.8.8
vpn-tunnel-protocol ssl-client ssl-clientless
split-tunnel-policy tunnelall
default-domain value local
address-pools value VPN-FullTunnel
webvpn
url-list value Lars_bookmarks
tunnel-group VPN-FullTunnel type remote-access
tunnel-group VPN-FullTunnel general-attributes
authentication-server-group LarsesRadius LOCAL
default-group-policy VPN-FullTunnel
tunnel-group VPN-FullTunnel webvpn-attributes
group-alias VPN-FullTunnel enable

Skriv et svar

Din e-mailadresse vil ikke blive publiceret. Krævede felter er markeret med *