Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Downloadable ACL -- WebVPN

Is it possible to use a Downloadable ACL from the ACS for a WebVPN?

4 REPLIES
Bronze

Re: Downloadable ACL -- WebVPN

New Member

Re: Downloadable ACL -- WebVPN

Thanks for the response, Fadi.

One of the things we're hoping to do is to create a "shared" Web ACL.  On the ACS you can create "Downloadable IP ACLs" but from there you can't do Web ACLs.  So it sounds like for each individual user we'd have to do in and enter the Web ACL manually.  Does that make sense?  Do you know if there's a way to create a shared Web ACL?

New Member

Re: Downloadable ACL -- WebVPN

I did see that there's a way to create Web ACLs under the Dynamic Access Policies in the ASDM.  However, that's only for all-permit or all-deny entries.  We'd like to have entries that filter on specific URLs.

Bronze

Re: Downloadable ACL -- WebVPN

Indeed DAP webvpn acls won't work if you mix deny and permit. also ACS downloadable access-lists only support ip acls not webvpn.

to save time on configuring this for every users, you can group the same type of users under a group and apply the webvpn acl on the group level.

Hope this helps.

Regards,

Fadi.

997
Views
5
Helpful
4
Replies