Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
13406
Views
0
Helpful
2
Replies

Enabling DTLS with AnyConnect (SSL) Connection

rachelau_2005
Level 1
Level 1

‎07-16-2009 03:03 PM - edited ‎03-11-2019 08:56 AM

I am trying to enabling DTLS for specific groups on ASA 5510.

however, when i type this :

asa-A(config)# webvpn

asa-A(config-webvpn)# svc ?

webvpn mode commands/options:

enable Enable SSL VPN Client

image SSL VPN Client package file path

profiles AC profiles package filepath.

it doesnt seem to support the command svc dtls enable

any idea?

Thanks

Rachel

Labels:
0 Helpful
2 Replies 2

mchin345
Level 6
Level 6

‎07-23-2009 02:46 PM

To enable DTLS globally for a particular port, use the dtls port command:

[no] dtls port port_number

To enable DTLS for specific groups or users, use the svc dtls enable command in group policy webvpn or username webvpn configuration mode:

[no] svc dtls enable

http://www.cisco.com/en/US/docs/security/vpn_client/anyconnect/anyconnect23/administration/23admin3.html

0 Helpful

lbarraza
Level 1
Level 1

‎09-25-2020 09:32 AM

For ASA 5545-x the command that we used were:

 

ASA(config)# group-policy <Connection Profile name> attributes

You can use the "sh run group-policy" command to verify what group policy attributes you want to enable dtls.

in our case we used.

ASA(config)# group-policy sslvpn attri

 

ASA(config-group-policy)#webvpn

ASA(config-group-webvpn)#anyconnect ssl dtls enable
 To verify dtls is enabled

ASA(config-group-webvpn)# do sh run group-policy <connection profile>

 

 

 

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card