cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to Cisco Firewalls Community


332
Views
0
Helpful
0
Replies
Highlighted
Beginner

Can I enable webvpn on an ASA without opening access to the entire Public Internet?

I'm enabling 'webvpn' on an ASA firewall, and when I do this, it appears to open TCP/443  on the Outside Interface, to  SRC=0.0.0.0.   I'm lucky enough to know the SRC's of all my VPN customers, so I'd like to limit TCP/443 being visible to JUST them, and not the entire Internet at large.  Is this a possibility?    Or, is it mandatory that the Outside Interface be open to the entire Public Internet on TCP/443?    I also have the 'sysopt' option for vpn-connect    turned off; I'd like all my VPN traffic to go thru the ACLs.       Thanks in advance!

Everyone's tags (4)
CreatePlease to create content
Content for Community-Ad
FusionCharts will render here