Using Ssl To Access The Central Site - Cisco FirePOWER ASA 5500 series Configuration Manual
Security appliance command line
Hide thumbs
Also See for FirePOWER ASA 5500 series:
- Datasheet (20 pages) ,
- Configuration manual (1140 pages)
Table of Contents
Advertisement
Chapter 37
Configuring WebVPN
•
•
•
•
•
Using SSL to Access the Central Site
WebVPN uses SSL and its successor, TLS1 to provide a secure connection between remote users and
specific, supported internal resources at a central site. This section includes the following topics:
•
•
•
•
Using HTTPS for WebVPN Sessions
Establishing WebVPN sessions requires the following:
•
•
To permit WebVPN sessions on an interface, perform the following steps:
In global configuration mode, enter the webvpn command to enter webvpn mode.
Step 1
Step 2
Enter the enable command with the name of the interface that you want to use for WebVPN sessions.
For example, to enable WebVPN sessions on the interface called outside, enter the following:
hostname(config)# webvpn
hostname(config-webvpn)# enable outside
Configuring WebVPN and ASDM on the Same Interface
The security appliance can support both WebVPN and an ASDM administrative session simultaneously
on the same interface. To do so, you must assign different port numbers to these functions. An alternative
is to configure WebVPN and access to ASDM on different interfaces.
OL-10088-01
NAT, reducing the need for globally unique IP addresses.
PAT, permitting multiple outbound sessions appear to originate from a single IP address.
QoS, rate limiting using the police command and priority-queue command.
Connection limits, checking either via the static or the Modular Policy Framework set connection
command.
The established command, allowing return connections from a lower security host to a higher
security host if there is already an established connection from the higher level host to the lower
level host.
Using HTTPS for WebVPN Sessions
Configuring WebVPN and ASDM on the Same Interface
Setting WebVPN HTTP/HTTPS Proxy
Configuring SSL/TLS Encryption Protocols
Using HTTPS to access the security appliance or load balancing cluster. In a web browser, users
enter the security appliance IP address in the format https:// address where address is the IP address
or DNS hostname of the security appliance interface.
Enabling WebVPN sessions on the security appliance interface that users connect to.
Cisco Security Appliance Command Line Configuration Guide
Getting Started with WebVPN
37-3
Advertisement
Table of Contents
Troubleshooting
