11-14-2010 12:22 AM
Hi all
I have an asa 5510, on which i configured a clientless ssl vpn.
But when i try to connect to https://ip address, i get an "connection timed out" error.
I've attached the config, if anyone has an idea, please let me know.
Thank you
Bert
Solved! Go to Solution.
11-21-2010 02:26 PM
Hi Bert,
Sounds like your ISP may be blocking HTTPS (TCP port 443) inbound.
Either check with the ISP if that is the case, or try this:
conf t
webvpn
no enable outside
port 4443
enable outside
then, try to connect to https://your-asa:4443/
hth
Herbert
11-14-2010 01:51 AM
You would need to enable the "webvpn" protocol under the group policy as follows:
group-policy DfltGrpPolicy attributes
vpn-tunnel-protocol webvpn
Here is a sample configuration for your reference:
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008072462a.shtml
Hope that helps.
11-18-2010 10:27 AM
11-21-2010 02:26 PM
Hi Bert,
Sounds like your ISP may be blocking HTTPS (TCP port 443) inbound.
Either check with the ISP if that is the case, or try this:
conf t
webvpn
no enable outside
port 4443
enable outside
then, try to connect to https://your-asa:4443/
hth
Herbert
11-25-2010 04:43 AM
Thanks Herbert
That last suggestion did the trick.
Thanks
Bert
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide