Cisco Cisco IOS Software Release 12.4(6)T
SSL VPN
Restrictions for SSL VPN
3
Cisco IOS Security Configuration Guide
•
The SSL VPN gateway and context configuration must be completed before a remote user can access
resources on a private network behind an SSL VPN. This configuration is shown in the section “
resources on a private network behind an SSL VPN. This configuration is shown in the section “
ACL Support
•
Before configuring this feature, the time range should have already been configured.
Single SignOn (SSO) Netegrity Cookie Support
•
A Cisco plug-in must be installed on a Netegrity SiteMinder server.
Restrictions for SSL VPN
•
URLs referred by the Macromedia Flash player cannot be modified for secure retrieval by the SSL
VPN gateway.
VPN gateway.
Cisco AnyConnect VPN Client
CiscoAnyConnect VPN Client does not support the following:
•
Datagram Transport Layer Security (DTLS) with SSL connections
•
Standalone Mode
•
IPv6 VPN access
•
Compression support
•
Language Translation (localization)
•
Client-side authentication
•
Adaptive Security Appliance (ASA) and Adaptive Security Device Manager (ASDM) and any
command-line interface (CLI) associated with the them
command-line interface (CLI) associated with the them
•
Adjusting Maximum Transmission Unit (MTU) size
•
Sequencing
Thin Client Control List Support
•
Although there is no limitation on the maximum number of filtering rules that can be applied for
each access control list (ACL) entry, keeping the number below 50 should have no impact on router
performance.
each access control list (ACL) entry, keeping the number below 50 should have no impact on router
performance.
HTTP Proxy
•
This feature works only with Microsoft Internet Explorer.
•
This feature will not work if the browser proxy setup cannot be modified because of any security
policies that have been placed on the client workstation.
policies that have been placed on the client workstation.
Information About SSL VPN
To configure SSL VPN, you should understand the following concepts:
•
•