If it's being used as the former (a smartcard), this would register as a Digital Certificate inthe MS IE CAPI certificate store, and you would configure ther PIX/ASA for certificate based authentication for users. Once certificate authentication is configured, all WebVPN users must presently authenticate with certificate. If it's an OTP type of device, then this would require setting up the PIX/ASA to PROXY to RADIUS and a RADIUS server capable of communicating with the eAladdin server.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...