I have setup two features for the customer on an ASA5500 appliance.
1) IPSEC client vpn access for home/remote users to access the LAN. This works fine.
2) WEBVPN for specific users who need to access a particular application on the LAN remotely via a HTTPS page.
Now, 1) works perfectly so this can be ignored. However, the customer suggested as one of their requirements that they would like only 2 srouce ip addresses to be allowed to access the https site remotely. I have raised a tac case with cisco who said that this cannot be done. I thought this might be as simple as using an ACL to permit only certain IP's to the site but have not been successful in gettng this to work. I was wondering if anyone had any other revelations. The config is ATTACHED.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...