Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3069
Views
0
Helpful
3
Replies

anyconnect acl

Go to solution
ctp
Level 1
Level 1

‎02-02-2011 05:29 AM - edited ‎02-21-2020 05:08 PM

Hi network gurus

I cannot find anywhere how to ACL my anyconnect client trafic

People speek of a vpn-filter. But I cannot find the option in ADSM 6.3(1)

The only option thats similar to this is under Remote Access VPN\Clientless SSL VPN Access\Group policies\General\More Options\web acl

I fear this only applies to trafic going through the web portal, as it has no affect on my AnyConnect clients. I only want to block tcp/25 smtp trafic from my clients, so only need 1 or 2 linies

I looked at this page http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080641a52.shtml but its a old ADSM used in the example.

Can anyone lead me on my way?

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Bastien Migette
Cisco Employee
Cisco Employee

‎02-02-2011 05:48 AM

I just took a screenshot on ASDM 6.4 (latest). It might be a bit different on your version but the menu should remain pretty the same.

The vpn-filter command is to use in CLI in the configuration group.

Just modify the group policy that is used by your anyconnect profile so that you can define an IP Filter.


I hope this help.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Bastien Migette
Cisco Employee
Cisco Employee

‎02-02-2011 05:48 AM

I just took a screenshot on ASDM 6.4 (latest). It might be a bit different on your version but the menu should remain pretty the same.

The vpn-filter command is to use in CLI in the configuration group.

Just modify the group policy that is used by your anyconnect profile so that you can define an IP Filter.


I hope this help.

0 Helpful

Go to solution
ctp
Level 1
Level 1
In response to Bastien Migette

‎02-02-2011 06:03 AM

I could kiss you. I have looked at though the ADSM so many times, and the freaking option was just in front of me

Thank you so much for your help!

0 Helpful

Go to solution
Bastien Migette
Cisco Employee
Cisco Employee
In response to ctp

‎02-02-2011 06:10 AM

You're welcome

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents