Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Redirecting SSL VPN to public DMZ interface

Hello,

I have a situation where the usable WAN IP block belongs to the DMZ interface of the ASA. A WAN/ISP transit network also exists between the ASA and ISP provider but we cannot use these addresses for SSL VPN.

Is it possible to route through the WAN/ISP interface and terminate SSL client/clientless connections on the DMZ interface of the ASA?

3 REPLIES

Re: Redirecting SSL VPN to public DMZ interface

I am confused - why do you think "A WAN/ISP transit network also exists between the ASA and ISP provider but we cannot use these addresses for SSL VPN" If it is reachable from the Internet and there is an IP address on the "outside" interface address of the ASA - then you can use it.

HTH>

New Member

Re: Redirecting SSL VPN to public DMZ interface

We cannot use it as 443 is utilized for another purpose on that IP.

Re: Redirecting SSL VPN to public DMZ interface

yes it would fail if you have not configured the device to accept WebVPN connections on that interface??

webvpn

enable >

HTH>

243
Views
0
Helpful
3
Replies