webtype ACL and SSL Bookmarks

mkdccie · ‎07-09-2012

Hello All,

I have SSL clientless VPN with webtype ACL, when I add the ACL for RDP , the bookmark for that RDP will show dimmed (can not click on it and on mouse over it shows acess denied) .But for VNC its fine.

ACL as below:

access-list WEB_ACL line 1 webtype permit url vnc://1.1.1.1 log default (hitcnt=48)

access-list WEB_ACL line 2 webtype permit tcp host 1.2.2.2 eq 3389 log default (hitcnt=2)

If I add the same as all tcp, the bookmark will work and I can click on it.

access-list WEB_ACL line 3 webtype permit tcp host 1.2.2.2 log default

Any idea why ?

Regards,

MKD

Jennifer Halim · ‎07-09-2012

It should have been:

access-list WEB_ACL line 2 webtype permit url rdp://1.2.2.2

mkdccie · ‎07-09-2012

i tried that already, but the bookmarks will be dimmed

Jennifer Halim · ‎07-09-2012

I assume that you use the RDP plugin, and also you reconnect to the WebVPN after those changes?

What version is your ASA?

mkdccie · ‎07-09-2012

yes, i use the rdp plugin, and each time i logoff and login again to try it.

Its:

ASA 5510

8.2(5)

asa825-k8

Jennifer Halim · ‎07-09-2012

Strange, you might want to open a TAC case to get it further investigated.

mkdccie · ‎07-09-2012

Yes, i said maybe here someone faced the same problem, I will open TAC case.

Thanks.