Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
988
Views
0
Helpful
8
Replies

SSL VPN !

Go to solution
Leo_Stobbe
Level 1
Level 1

‎03-22-2007 08:05 AM - edited ‎02-21-2020 02:56 PM

Hi!

I am not really expert on troubleshooting of VPN connections. There is a question related with SSl VPN.

I have recently configured SSL VPN to our partner to get him accessed to internal WEB resources. I did it. Seems to be fine. But they are complaining about that can't keep the LAN and VPN connection simultaneously at their side. Is it normal for SSL VPN? Or?

thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
h.parsons
Level 3
Level 3
In response to Leo_Stobbe

‎03-23-2007 01:05 PM

Under your group policy put the command: vpn-simultaneous-logins <0-2147483647> Maximum number of simultaneous logins allowed

View solution in original post

0 Helpful
8 Replies 8

Go to solution
kaachary
Cisco Employee
Cisco Employee

‎03-22-2007 04:24 PM

You might not have configured split tunnel. You need to configure split tunnel in the group on the headend device ( CVPN concentrator or ASA )

*Please rate if it helps.

-Kanishka

0 Helpful

Go to solution
Leo_Stobbe
Level 1
Level 1
In response to kaachary

‎03-22-2007 10:34 PM

I didn't get you...

Why do i need split-tunneling?

This is as i know for getting remote access vpn clinets to Internet through VPN-endpoint.

I tested myself

When i try to establish SSL VPN through the dial-up internet...I can connect and see the web servers, which is allowed through WEB VPN. But i can't go anywhere else in Internet.So i mean i want to use my dial-up internet simultaneously with ssl vpn.(not the corporate internet, through split-tunneling)

How can i do that?

0 Helpful

Go to solution
kaachary
Cisco Employee
Cisco Employee
In response to Leo_Stobbe

‎03-23-2007 03:04 AM

That is not correct. Enabling Split tunnel means, only specific trafic will be tunneled, rest all other traffic(normal Internet traffic) will go through the client's ISP (in clear text).

Split tunneling is exactly opposite of what you are thinking it is to be.

To read more about split tunnel :

http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_configuration_example09186a00806f34fa.shtml

The doc is however for ipsec clients, but same applies to SSL clients as well.

*Please rate if helped.

-Kanishka

0 Helpful

Go to solution
Leo_Stobbe
Level 1
Level 1
In response to kaachary

‎03-23-2007 04:31 AM

Thanks, for information regarding the tunnel.

But if i create one username for WEB/SSL VPN,

is it possible that several users can use simultaneously this account? If not, how to do that?

0 Helpful

Go to solution
kaachary
Cisco Employee
Cisco Employee
In response to Leo_Stobbe

‎03-23-2007 05:07 AM

On concentrator , Go to

Configuration-->Use Management--->Users-->Modify--->General

"Simultaneous Logins" option defines, how many simultaneous session can occur for this username.

*Please rate if helped.

-Kanishka

0 Helpful

Go to solution
Leo_Stobbe
Level 1
Level 1
In response to kaachary

‎03-23-2007 08:06 AM

But i am using ASA.

thanks

0 Helpful

Go to solution
h.parsons
Level 3
Level 3
In response to Leo_Stobbe

‎03-23-2007 01:05 PM

Under your group policy put the command: vpn-simultaneous-logins <0-2147483647> Maximum number of simultaneous logins allowed

0 Helpful

Go to solution
balbaletabrez
Level 1
Level 1

‎02-14-2010 02:56 AM

Hi can you share the SSL VPN configuration on ASA 5520.

As i intend to configure ASA 5520 for SSL.

Thanks

Tabrez

0 Helpful
Customers Also Viewed These Support Documents