Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
866
Views
0
Helpful
1
Replies

IOS SSL tunnel mode

ROBERTO TACCON
Level 4
Level 4

‎06-05-2008 06:54 AM

I am implementing a SSL VPN with IOS version 12.4(13r)T5 on a 2801 but when I try to connect to the tunnel mode with the latest svc (anyconnect-win-2.2.0133-web-deploy-k9.exe) with https://1.2.3.4/tunnel the ssl vpn client can't connect.

The error on the router is:

Jun 5 16:07:55.755: WV: Appl. processing Failed : 2

Jun 5 16:07:55.755: WV: server side not ready to send.

The following is the configuration:

!

ip local pool WEBVPN 10.0.0.140 10.0.0.150 group vpn2

!

!

webvpn gateway ISR2801-RM

hostname ISR2801-RM

ip address 1.2.3.4 port 443

ssl trustpoint TP-self-signed-50153718

inservice

!

webvpn install svc flash:/webvpn/svc.pkg

!

webvpn install csd flash:/webvpn/sdesktop.pkg

!

webvpn context vpn1

ssl authenticate verify all

!

url-list "eng"

url-text "wwwin-eng" url-value "http://wwwin-eng.cisco.com"

!

!

policy group vpn1

url-list "eng"

default-group-policy vpn1

gateway ISR2801-RM domain clientless

inservice

!

!

webvpn context vpn2

ssl authenticate verify all

!

!

policy group vpn2tunnel

functions svc-enabled

svc address-pool "WEBVPN"

svc split include 10.0.0.2 255.255.255.255

default-group-policy vpn2tunnel

gateway ISR2801-RM domain tunnel

inservice

!

Labels:
0 Helpful
1 Reply 1
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents