Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1478
Views
0
Helpful
3
Replies

Prerequisites for SSL Client-less VPN with Smart Tunneling & Issues in FireFox

NSG Manager
Level 1
Level 1

‎05-10-2011 02:43 AM

We deployed SSL Client-less VPN with Smart Tunneling for users who are onsite to connect to a internal website.

Since these users use different type of browsers and are behind different proxy ( due to being at customer premises), they have issues with Smart tunneling.

Even if users have Java in there browser( we want this to work only from FireFox), we get Failed to Start error.

I confirmed that relaydll was downloaded and was in temp folder.

Is this :

1) Due to Java issue?

2) User rights issue?

3) Proxy blocking something?

4) Would user need admin right or privileged rights?

5) Is there some other setting in FireFox that has  to be set to avoid this?

Also, whats are the prerequisites for SSL Client-less VPN with Smart Tunneling

Labels:
0 Helpful
3 Replies 3

Nicolas Fournier
Cisco Employee
Cisco Employee

‎05-19-2011 05:32 AM

Hi,

Smart-tunnel doesn't require administrator rights and should work on Firefox 3.0 or above with Sun JRE 1.5 or later.

Which version are you running on your ASA? Is it one that would be affected by "CSCsx05766  Smart tunnel'ed bookmark does not load with Java 6 update 10 onwards"?

More info on the bug: http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsx05766

If you do, maybe the error is due to the proxy you are using? Does it work when you don't use one? If so, maybe you could try to put the ASA in the proxy exception list?

Regards,

Nicolas

0 Helpful

NSG Manager
Level 1
Level 1
In response to Nicolas Fournier

‎05-24-2011 08:56 PM

We use 8.2(2) and yes, it works if proxy  isnt used ( doesnt mean that I tested it at the same environment with/without proxy). It works fine when I connect from vanilla Internet machines. I also doubt if the issue is with having mutiple versions of Java in the same machine.

0 Helpful

Nicolas Fournier
Cisco Employee
Cisco Employee
In response to NSG Manager

‎05-25-2011 03:02 AM

Hi,

If it works without proxy, I would consider putting the ASA in the proxy exception list.

If this isn't an option for you, I would advise you to open a TAC case to have this troubleshooted as smart-tunnel on Windows should support proxies.

Regards,

Nicolas

0 Helpful
Customers Also Viewed These Support Documents