I need some help on Webvpn as I have never configured one on an ASA. I have an ASA 5510. It has around 8 IPSec tunnels already running on it. I want to configure Webvpn for some users of that company who may be using public PCs over the upcoming holidays to access a particular website in the corporate network. So I will be giving access to only that URL. Reason why I am not giving them access through Remote Access IPSec vPN is that some of them may use public PCs to access the site. Hence I have decided on Webvpn access to them. Please advise if that is right thing to do. Also, is there any problem if I configure Webvpn on that ASA even if there are around 8 L2L tunnels running on the device. Another thing I want to know is that do the Webvpn clients need any assignment of IP address form an IP Pool like IPSec RA clients. A brief descritpion will help. Any help is appreciated.
Yes you can do that.Infact that how its done in most cases.
If you are using ASDM from outside then you will need to change ASDM port on ASA.
Syed Iftekhar Ahmed
There are different flavours of SSL VPN:
Thin Client (WebVPN+port forwarding)
Thick (SSL VPN) Client
For the first two options no IP Pool needs to be defined. That is only required in the Thick/Full SSL VPN Client configuration.
SSL/IPSec VPNs can co-exist with each other without any issues.
This is a configuration example for Clientless:
Please rate if helpful.