Mystical_Ice
asked on
SSL VPN and ASA - need some help
Hey
I'm fairly familiar with configuring ipsec VPN tunnels and client VPNs on the asa 5505, but I have a client that wants me to set up a SSL VPN for users to access his terminal server.
I know I'm wrong, but I always thought SSL VPNs were only for web applications, since the VPN is established through the browser? Am I right? What benefit would there be to this over a regular VPN? Also, how does licensing work? How would I set it up?
Any help greatly appreciated!
I'm fairly familiar with configuring ipsec VPN tunnels and client VPNs on the asa 5505, but I have a client that wants me to set up a SSL VPN for users to access his terminal server.
I know I'm wrong, but I always thought SSL VPNs were only for web applications, since the VPN is established through the browser? Am I right? What benefit would there be to this over a regular VPN? Also, how does licensing work? How would I set it up?
Any help greatly appreciated!
Last Comment
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Through the CLI, do:
copy tftp flash and upload the pkg file to the ASA.
Once you do that, go into the webvpn section and add the package.
For example:
webvpn
enable outside
svc image disk0:/anyconnect-win-2.3.
svc enable
copy tftp flash and upload the pkg file to the ASA.
Once you do that, go into the webvpn section and add the package.
For example:
webvpn
enable outside
svc image disk0:/anyconnect-win-2.3.
svc enable
Oh also, by default the ASA comes with 10 IPsec licenses and 2 SSL.
You don't necessarily need the SSL client, you can do clientless. That video is kind of old.
Here's a better link to show you how to setup webVPN
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00806ea271.shtml
http://www.youtube.com/watch?v=ZcsPa4P5uzA
Here's a better link to show you how to setup webVPN
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00806ea271.shtml
http://www.youtube.com/watch?v=ZcsPa4P5uzA
ASKER
where do i get the SSL VPN image from though. the one i upload - where does it come from...
You'll have to download it from Cisco. You can try this link:
http://www.networkworld.com/community/node/46661
http://www.networkworld.com/community/node/46661
ASKER
So i upload the ANYCONNECT client?
You only need the AnyConnect if that is what you are wanting to use.
If you just want to use the webvpn, you do not need to download or upload anything to the ASA.
What version ASA-Os are you running? I'll get you a best link to guide, but it depends on version. The instructions in the link above are for version 7.2, but 8.x is a little different. Ther eis no WebVPN section of the ASDM to configure it. It is all in the Clientless SSL VPN section and you don't have to upload anything to the ASA to use it.
If you just want to use the webvpn, you do not need to download or upload anything to the ASA.
What version ASA-Os are you running? I'll get you a best link to guide, but it depends on version. The instructions in the link above are for version 7.2, but 8.x is a little different. Ther eis no WebVPN section of the ASDM to configure it. It is all in the Clientless SSL VPN section and you don't have to upload anything to the ASA to use it.
You can download the SSL Plugins from Cisco, but you must have a valid CCO account
http://www.cisco.com/cisco/software/release.html?mdfid=280582808&flowid=4822&softwareid=282829226&release=1.1.1&relind=AVAILABLE&rellifecycle=&reltype=all
http://www.cisco.com/cisco/software/release.html?mdfid=280582808&flowid=4822&softwareid=282829226&release=1.1.1&relind=AVAILABLE&rellifecycle=&reltype=all
VPN
A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.
26K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
ASKER
Question - where do i get the SSL VPN client to upload into teh ASA? ?