aaa new-model aaa authentication login sslvpn local ! username admin secret P@SSSW)RD ! crypto key generate rsa label iamroot-rsa-keys modulus 1024 ! crypto vpn anyconnect flash:/webvpn/anyconnect-win-3.1.00495-k9.pkg sequence 1 ! ip local pool webvpn-pool 192.168.1.80 192.168.1.85 ! webvpn gateway Cisco-WebVPN-Gateway ip address XXX.XXX.XXX.XXX port 443 ssl encryption rc4-md5 ssl trustpoint my-trustpoint inservice ! webvpn context Cisco-WebVPN title " WebVPN Gateway" ! acl "ssl-acl" permit ip 192.168.1.0 255.255.255.0 192.168.1.0 255.255.255.0 login-message "Cisco Secure WebVPN" ! policy group webvpnpolicy functions svc-required functions svc-enabled filter tunnel ssl-acl svc address-pool "webvpn-pool" netmask 255.255.255.0 svc rekey method new-tunnel svc split include 192.168.1.0 255.255.255.0 default-group-policy webvpnpolicy aaa authentication list sslvpn gateway Cisco-WebVPN-Gateway max-users 2 ! ssl authenticate verify all ! url-list "rewrite" inservice
ssl vpn Cisco any connect
Добавить комментарий