Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1427
Views
0
Helpful
5
Replies

ASA AnyConnect Remote Access VPN Configuration.DEFAULT PORT.

Go to solution
woori-bank
Level 1
Level 1

‎02-25-2016 04:12 AM - edited ‎02-21-2020 08:42 PM

Hello!!! Now i need to configure AnyConnect Remote Access VPN. And i have one question.

The default port for AnyConnect 443, but that port is busy on ASA. We use this port for another application.

How to change the port to connect? Is it real? THANK YOU!!!

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Aditya Ganjoo
Level 9
Level 9

‎02-25-2016 04:18 AM

Hi, please add the following configuration:

  1. Enable the WebVPN feature on the ASA:
    ASA(config)#webvpn
  2. Enable the WebVPN service for the outside interface of the ASA:
    ASA(config-webvpn)#enable outside
  3. Allow the ASA to listen to the WebVPN traffic on the customized port number:
    ASA(config-webvpn)#port <1-65535>

View solution in original post

0 Helpful
5 Replies 5

Go to solution
Aditya Ganjoo
Level 9
Level 9

‎02-25-2016 04:18 AM

Hi, please add the following configuration:

  1. Enable the WebVPN feature on the ASA:
    ASA(config)#webvpn
  2. Enable the WebVPN service for the outside interface of the ASA:
    ASA(config-webvpn)#enable outside
  3. Allow the ASA to listen to the WebVPN traffic on the customized port number:
    ASA(config-webvpn)#port <1-65535>
0 Helpful

Go to solution
woori-bank
Level 1
Level 1
In response to Aditya Ganjoo

‎02-25-2016 04:27 AM

Wau!!! How fast!!! Thank you!

1. As I understand it, the client must enter the address like: //external address:port?

2.On ASA  SITE-TO-SITE vpn is configired already. Tuning AnyConnect Remote Access VPN, I can break SITE-TO-SITE vpn?

0 Helpful

Go to solution
Aditya Ganjoo
Level 9
Level 9
In response to woori-bank

‎02-25-2016 04:33 AM

Hi,

Yes the clients have to enter the https: //external address:port to access the Anyconnect.

It should not break your Site to site as they are two different services.

Regards,

Aditya

Please rate helpful posts.

0 Helpful

Go to solution
woori-bank
Level 1
Level 1
In response to Aditya Ganjoo

‎02-25-2016 11:09 PM

Ok! I have one question. I confiqured all settings. I want to use port 6789. I think that i need to open this port on interface.Is it right? Thanks!!!

 I use NAT RULE (lan1-center office lan2-vpn clients), but i think that a need to use a second nat rule too, because port 6789 is not open?

nat (inside,outside) source static LAN1 LAN1 destination static LAN2 LAN2 no-proxy-arp route-lookup
0 Helpful

Go to solution
woori-bank
Level 1
Level 1
In response to woori-bank

‎02-26-2016 12:56 AM

I read documentation and i think that i need to add nat rule. Is it right?

object service PORTVPN
 service tcp destination eq 6789

nat(outside,outside) source static LAN2 LAN2 destination static LAN2 LAN2 service PORTVPN
0 Helpful
Customers Also Viewed These Support Documents