<div>
Thanks ebjers for the quick response!<br />
I reason i was going to put the clientless SSL VPN on a seperate IP was because port 80/443 on the actual interface IP is being used by the SSL anyconnect client.<br />
I suppose i could use a different port for the clientless SSL VPN.
</div>


Thanks ebjers for the quick response!
I reason i was going to put the clientless SSL VPN on a seperate IP was because port 80/443 on the actual interface IP is being used by the SSL anyconnect client.
I suppose i could use a different port for the clientless SSL VPN.

<div>
in that case if your license allows it create a sub-interface
</div>


in that case if your license allows it create a sub-interface

<div>
<div class="content wysiwyg-content">
I have an outside interface IP address on the ASA with a 255.255.255.248 subnet allowing 6 IP addresses. I have setup clientless SSl vpn enabled on the outside interface and when i try to access it to the IP address within the subnet that is actually configured on the outside interface it works fine.<br />
However if i try and set it up so the tunnel-group group-url points to one of the other IP's in the subnet it won't work.<br />
Can anyone confirm whether it only works on the actual configured IP or should i be able to connect on any of the IPs in the subnet. <br />
<br />
ie if IP was as shown below the address 1.1.1.1 would work but 1.1.1.2 - 1.1.1.6 would not.<br />
<br />
&nbsp;interface GigabitEthernet0/1<br />
&nbsp;nameif outside<br />
&nbsp;security-level 0<br />
&nbsp;ip address 1.1.1.1 255.255.255.248
</div>
</div>


I have an outside interface IP address on the ASA with a 255.255.255.248 subnet allowing 6 IP addresses. I have setup clientless SSl vpn enabled on the outside interface and when i try to access it to the IP address within the subnet that is actually configured on the outside interface it works fine.
However if i try and set it up so the tunnel-group group-url points to one of the other IP's in the subnet it won't work.
Can anyone confirm whether it only works on the actual configured IP or should i be able to connect on any of the IPs in the subnet. 

ie if IP was as shown below the address 1.1.1.1 would work but 1.1.1.2 - 1.1.1.6 would not.

 interface GigabitEthernet0/1
 nameif outside
 security-level 0
 ip address 1.1.1.1 255.255.255.248

ASA SSL clientless VPN

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Cisco

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.