If a group policy specifies a smart tunnel list and the security appliance assigns the policy to a clientless session, the applications specified in the list become available to the session. Therefore, to complete the configuration of the smart tunnel feature, you must assign a smart tunnel list to any group policies to be applied to the users for whom you want to provide smart tunnel access
For now, the only way this can be achieved is by following the steps below. The only caveat with this solution is that there is no clean way to close the smart tunnel relay once it is started because the navigation toolbar will not display. You will need to manually go to the logout page in order to logout and terminate the smart tunnel relay.
1. ASA image: 8.0.3(2) or later.
2. Write a simple html page with the following and upload it as web content (html), replace sample URL with yours:
3. Create a customization object with a customized pane to load the html content that you created in step 2. The URL for the html pane would be the webcontent you loaded earlier, such as: /+CSCOE+/cisco.htm
4. In the group policy, auto start Smart Tunnels using any random string in the ST list
5. To log out, try going to https:///+webvpn+/webvpn_logout.html
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...