Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1970
Views
0
Helpful
3
Replies

Cisco 887 SSL VPN - not showing up option for downloading client

ndazzi.rdac
Level 1
Level 1

‎08-05-2012 04:37 PM

HI,

i m configuring a 887 router for ssl vpn. The goal is to configure full tunnel mode, so the client connect to the webpage generated by the router, it logs in, it has the "application svc" window where you can download the client and connect. Problem is everything is working except for the fact that the window with the ssl application doesn show up at all and so clients can't download the client and connect.

this is the relevant part of the configuration:

ip local pool sslvpnpool xxxxx xxxxxx

ip http server

ip http authentication local

ip http secure-server

webvpn gateway SSLVPNGTW

hostname xxxxxxx

ip address xxxxxxxx port 4433

http-redirect port 80

ssl trustpoint TP-self-signed-3011213410

inservice

!

webvpn install svc flash:/webvpn/anyconnect-dart-win-2.5.6005-k9.pkg sequence 1

!

webvpn install svc flash:/webvpn/anyconnect-macosx-i386-2.5.6005-k9.pkg sequence 2

!

webvpn context SSLVPN

ssl authenticate verify all

!

url-list "my-url-list"

   heading "my-website"

policy group sslvpn

   functions svc-enabled

   svc address-pool "sslvpnpool" netmask 255.255.255.0

   svc default-domain "cisco.com"

   svc keep-client-installed

   svc dpd-interval gateway 30

   svc homepage "www.cisco.com"

   svc rekey method new-tunnel

   svc split include xxxxxxx 255.255.255.0

   svc dns-server primary xxxxxxxx

!

policy group ONE

   functions svc-required

   functions svc-enabled

   svc default-domain "cisco.com"

   svc keep-client-installed

   svc dpd-interval gateway 30

   svc homepage "www.cisco.com"

   svc rekey method new-tunnel

   svc dns-server primary xxxxxxxx

   svc dns-server secondary xxxxxxxxxx

gateway SSLVPNGTW

inservice

thanks

Labels:
0 Helpful
3 Replies 3

makhuran
Level 1
Level 1

‎08-05-2012 06:08 PM

Hi

Could you please let us know what version of IOS you are using. Also I see that you have two policy groups configured. Which policy group are your users connecting to where you are seeing the issue.

regards

Manmeet

0 Helpful

ndazzi.rdac
Level 1
Level 1
In response to makhuran

‎08-05-2012 06:23 PM

thanks Manmeet for your reply.

Client running version 15. Also ignore policy group ONE, i did it as test.

thanks

0 Helpful

ndazzi.rdac
Level 1
Level 1
In response to ndazzi.rdac

‎08-06-2012 03:31 PM

any clue anyone?

thanks

NIck

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents