Support User Manuals

Cisco Systems OL-16647-01 Network Router User Manual

Open as PDF

of 1230

36-11

Cisco ASDM User Guide

OL-16647-01

Chapter 36 Configuring Dynamic Access Policies

Understanding VPN Access Policies

has tested the following applications: Windows Terminal Services, Telnet, Secure FTP (FTP over

SSH), Perforce, Outlook Express, and Lotus Notes. Other TCP-based applications may also work,

but Cisco has not tested them.

Note Port Forwarding does not work with some SSL/TLS versions.

Caution Make sure Sun Microsystems Java™ Runtime Environment (JRE) 1.4+ is installed on the remote

computers to support port forwarding (application access) and digital certificates.

–

Port Forwarding—Select an option for the port forwarding lists that apply to this DAP record.

The other attributes in this field are enabled only when you set Port Forwarding to Enable or

Auto-start.

–

Unchanged—Click to remove the attributes from the running configuration.

–

Enable/Disable—Click to enable or disable port forwarding.

–

Auto-start—Click to enable port forwarding, and to have the DAP record automatically start the

port forwarding applets associated with its port forwarding lists.

–

Port Forwarding List drop-down box—Select already configured port forwarding lists to add to

the DAP record.

–

New...—Click to configure new port forwarding lists.

–

Port Forwarding Lists (unlabeled)—Displays the port forwarding lists for the DAP record.

–

Add—Click to add the selected port forwarding list from the drop-down box to the Port

Forwarding list on the right.

–

Delete—Click to delete selected port forwarding list from the Port Forwarding list. You cannot

delete a port forwarding list from the security appliance unless you first delete it from DAP

records.

• URL Lists Tab—Lets you select and configure URL lists for user sessions.

–

Enable URL Lists—Click to enable. When this box is not selected, no URL lists display on the

portal page for the connection.

–

URL List drop-down box—select already configured URL lists to add to the DAP record.

–

Manage...—Click to add, import, export, and delete URL lists.

–

URL Lists (unlabeled)—Displays the URL lists for the DAP record.

–

Add—Click to add the selected URL list from the drop-down box to the URL list box on the

right.

–

Delete—Click to delete the selected URL list from the URL list box. You cannot delete a URL

list from the security appliance unless you first delete it from DAP records.

• Access Method Tab—Lets you configure the type of remote access permitted.

–

Unchanged—Continue with the current remote access method.

–

AnyConnect Client—Connect using the Cisco AnyConnect VPN Client.

–

Web-Portal—Connect with clientless VPN.

–

Both-default-Web-Portal—Connect via either clientless or the AnyConnect client, with a

default of clientless.

previous next