Техническая Инструкция для Cisco Cisco ASA 5585-X Adaptive Security Appliance
Note: User Datagram Protocol (UDP) is not supported.
SSL VPN Client (Tunnel Mode)Downloads a small client to the remote workstation and allows
full secure access to resources on an internal corporate network. You can download permanently the
SSL VPN Client (SVC) to a remote workstation, or you can remove the client once the secure session
is closed.
SSL VPN Client (Tunnel Mode)Downloads a small client to the remote workstation and allows
full secure access to resources on an internal corporate network. You can download permanently the
SSL VPN Client (SVC) to a remote workstation, or you can remove the client once the secure session
is closed.
Refer to SSL VPN Client (SVC) on ASA with ASDM Configuration Example in order to learn more
about the SSL VPN Client.
about the SSL VPN Client.
•
This document demonstrates a simple configuration for the Thin−Client SSL VPN on the Adaptive Security
Appliance (ASA). The configuration allows a user to telnet securely to a router located on the inside of the
ASA. The configuration in this document is supported for ASA version 7.x and later.
Appliance (ASA). The configuration allows a user to telnet securely to a router located on the inside of the
ASA. The configuration in this document is supported for ASA version 7.x and later.
Prerequisites
Requirements
Before you attempt this configuration, ensure that you meet these requirements for the remote client stations:
SSL−enabled Web browser
•
SUN Java JRE version 1.4 or later
•
Cookies enabled
•
Popup blockers disabled
•
Local Administrative privileges (not required but strongly suggested)
•
Note: The latest version of the SUN Java JRE is available as a free download from the Java Website
.
Components Used
The information in this document is based on these software and hardware versions:
Cisco Adaptive Security Appliance 5510 series
•
Cisco Adaptive Security Device Manager (ASDM) 5.2(1)
Note: Refer to Allowing HTTPS Access for ASDM in order to allow the ASA to be configured by the
ASDM.
ASDM.
•
Cisco Adaptive Security Appliance Software Version 7.2(1)
•
Microsoft Windows XP Professional (SP 2) remote client
•
The information in this document was developed in a lab environment. All devices used in this document
were reset to their default configuration. If your network is live, make sure you understand the potential
impact of any command. All IP addresses used in this configuration were selected from RFC 1918 addresses
in a lab environment; these IP addresses are not routable on the Internet and are for test purposes only.
were reset to their default configuration. If your network is live, make sure you understand the potential
impact of any command. All IP addresses used in this configuration were selected from RFC 1918 addresses
in a lab environment; these IP addresses are not routable on the Internet and are for test purposes only.
Network Diagram
This document uses the network configuration described in this section.
When a remote client initiates a session with the ASA, the client downloads a small Java applet to the
workstation. The client is presented with a list of preconfigured resources.
workstation. The client is presented with a list of preconfigured resources.