Configuring Application Access
no port-forward
The following commands assign the port forwarding list named apps1 to the group policy:
hostname(config-group-policy)# webvpn
hostname(config-group-webvpn)# port-forward auto-start apps1
Enabling and Disabling Port Forwarding
By default, port forwarding is disabled. If you enable port forwarding, the user will have to start it
manually, using the Application Access > Start Applications button on the clientless SSL VPN portal
page. If you enter the port-forward auto-start list_name command described in the previous section
instead of the port-forward enable list_name command, the user will not have to start port forwarding
manually to use it.
To enable or disable port forwarding, enter the following command in group-policy webvpn
configuration mode or username webvpn configuration mode:
port-forward [enable list_name | disable]
list_name is the name of the port forwarding list already present in the security appliance webvpn
configuration. You cannot assign more than one port forwarding list to a group policy or username. To
view the port forwarding list entries, enter the show running-config port-forward command in
privileged EXEC mode.
To remove the port-forward command from the group policy or username and inherit the [no]
port-forward command from the default group-policy, use the no form of the command.
no port-forward
The following commands assign the port forwarding list named apps1 to the group policy:
hostname(config-group-policy)# webvpn
hostname(config-group-webvpn)# port-forward enable apps1
The following command disables port forwarding:
hostname(config-group-webvpn)# port-forward disable
Configuring Smart Tunnel Access
The following sections describe smart tunnels and how to configure them:
•
•
•
•
•
•
•
Cisco Security Appliance Command Line Configuration Guide
37-34
About Smart Tunnels
Why Smart Tunnels?
Smart Tunnel Requirements and Restrictions
Adding Applications to Be Eligible for Smart Tunnel Access
Assigning a Smart Tunnel List
Automating Smart Tunnel Access
Enabling and Disabling Smart Tunnel Access
Chapter 37
Configuring Clientless SSL VPN
OL-12172-03