01-25-2010 06:04 AM - edited 02-21-2020 04:27 PM
I need to have access from my home to workplace: 10.a.a.a
the outside interface is 90.a.a.a on PIX
the inside interface is 10.b.b.b on PIX
i have configured the ASDM from cisco.com, configuring by SSL VPN Wizard, i have sucsrsfuly uploaded the AnyConncet VPN cliebt to PIX.
So resault is:
(*1*) when connecting to " the outside interface is 90.a.a.a on PIX " can not locate remoute host(IE message to https://90.a.a.a on )
Why it does not see 90.a.a.a ???
(*2*) when connecting to " the inside interface is 10.b.b.b on PIX "
(chekbox) [ok] Auth
(chekbox) [ok] ActiveX
(chekbox) [ok] Java
(chekbox) [empty] sun systems
(chekbox) [trying to do, no mark] active and gives message:
----------------------------------------------------------------------------------
Manual Installation
Web-based installation was unsuccessful. If you wish to install the Cisco AnyConnect VPN Client, you may download an installer package.
Install using the link below:
Windows 7/Vista/64/XP
Alternatively, retry the automatic installation.
----------------------------------------------------------------------------------
but any of this 2 link give no result...
Why it does not download???
Can any one give any sugestions to solve (*1*) and (*2*)???
PLeas help)))
very pleas)
01-25-2010 07:46 AM
Can you post a copy of your config minus passwords?
On Jan 25, 2010, at 6:04 AM, "TImur.Kazan"
01-25-2010 09:48 PM
The problems was with ACL,
Il check port wich is used to VPN SSL
port on PIX is 443.
downloads succesfuly from outside interface.
It coonects just ok)
-----------------------------------------------------------
-----------LAST----------------LAST----------------
-----------------------------------------------------------
But the last question is:
If authentification is TACACS+
in login promt i can see all groups of SSL_VPN
so as I anderstand, if I choos the one not for me, I can have access to not permited addresses.
How to configur to make not see all this groups, and ability to login only to 1 disegnated group of VPN SSL???
01-26-2010 12:28 AM
In the other words:
How for different users, give access to different Groups?
is it possible in AnyConnect VPN SSL???
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide