Cisco Cisco ASA 5555-X Adaptive Security Appliance 기술 매뉴얼

 enable inside

 csd image disk0:/securedesktop−asa−3.1.1.32−k9.pkg

 csd enable

 customization DfltCustomization

  title text YOUR−COMPANY SSL VPN Services

  title style background−color: rgb(204,204,255);color: rgb(51,0,255);

  border−bottom:5px groove #669999;font−size:larger;vertical−align:middle;text−align:

  left;font−weight:bold

 url−list ServerList "Windows Shares" cifs://10.2.2.30 1

 url−list ServerList "Tacacs Server" http://10.2.2.69:2002 2

 tunnel−group−list enable

prompt hostname context 

Cryptochecksum:a840d81f0af21d869db4fa559e83d6d0

: end

 !

 end

Use this section to confirm that your configurations for Clientless SSL VPN, Thin−Client SSL VPN, or SSL
VPN Client (SVC) are operating properly.

Test CSD with a PC that has been configured with various Windows Locations. Each test should provide a
different access in accordance with the policies that you have configured in the above example.

You can change the port number and the interface where the Cisco ASA listens for WebVPN connections.

The default port is 443. If you use the default port, the access is https://ASA IP Address.

• 

The use of a different port changes the access to https://ASA IP Address:newportnumber.

• 

Several show commands are associated with WebVPN. You can execute these commands at the
command−line interface (CLI) to show statistics and other information. To see the use of show commands in
detail, refer to Verifying WebVPN Configuration.

Note: The Output Interpreter Tool (registered customers only) (OIT) supports certain show commands. Use
the OIT to view an analysis of show command output.

This section provides information you can use to troubleshoot your configuration.