Cisco Systems ASA 5540 Network Router User Manual


  Open as PDF
of 2086
 
69-32
Cisco ASA 5500 Series Configuration Guide using ASDM
Chapter 69 General VPN Setup
ACL Manager
Fields
Priority—Shows the priority for this rule.
Action—Specifies whether this rule permits or denies access.
VPN Client Type—Specifies the type of VPN client to which this rule applies, software or hardware,
and for software clients, all Windows clients or a subset. Some common values for VPN Client Type
include VPN 3002, PIX, Linux, * (matches all client types), Win9x (matches Windows 95, Windows
98, and Windows ME), and WinNT (matches Windows NT, Windows 2000, and Windows XP). If
you choose *, do not configure individual Windows types such as Windows NT.
VPN Client Version—Specifies the version or versions of the VPN client to which this rule applies.
This box contains a comma-separated list of software or firmware images appropriate for this client.
The following caveats apply:
You must specify the software version for this client. You can specify * to match any version.
Your entries must match exactly those on the URL for the VPN client, or the TFTP server for
the VPN 3002.
The TFTP server for distributing the hardware client image must be a robust TFTP server.
If the client is already running a software version on the list, it does not need a software update.
If the client is not running a software version on the list, an update is in order.
A VPN client user must download an appropriate software version from the listed URL.
The VPN 3002 hardware client software is automatically updated via TFTP.
Modes
The following table shows the modes in which this feature is available:
Add/Edit Internal Group Policy > Client Configuration Dialog Box
The Add or Edit Group Policy dialog box, Client Configuration dialog box contains three tabs that let
you configure general client parameters, Cisco client parameters, and Microsoft client parameters.
For information about the individual dialog boxes, see the following links:
Add/Edit Internal Group Policy > Client Configuration > General Client Parameters, page 69-33
Add/Edit Internal Group Policy > Client Configuration > Cisco Client Parameters, page 69-34
Add or Edit Internal Group Policy > Advanced > IE Browser Proxy, page 69-35
Modes
The following table shows the modes in which this feature is available:
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
——