Introduction:
The WebVPN Secure Socket Layer (SSL) AnyConnect client is a new feature offered in the latest Cisco VPN code. Users are now provided the option of downloading this SSL client when connecting to the campus WebVPN site with their Windows based computer. The SSL client uses 128 bit encrypted tunneling. The SSL client (similar to the Cisco “heavy” VPN client, but much smaller) is installed on the PC at login and creates an encrypted tunnel between the PC and the VPN concentrator. Like the heavy client, the PC obtains an IP address from the concentrator through the SSL client after successful login and appears as a workstation within the network. Unlike the WebVPN, all traffic between the concentrator and the client PC is encrypted through the SSL tunnel.
The primary difference between using the heavy client and the SSL AnyConnect client is that the SSL client session is secured using SSL encryption. (The heavy client uses IPsec for security.) SSL sessions remain an industry standard for encryption technology. SSL is conveniently available on Windows machines without the overhead needed for IPsec.
Core issue
Secure Socket Layer (SSL) VPN, which is also known as WebVPN, allows devices to securely connect to a Cisco VPN Concentrator without having to install a VPN Client, which uses IPSec.
SSL VPN (WebVPN) is supported on all VPN 3000 Series Concentrators (except the VPN 3002 Hardware Client) running VPN software version 4.1 or later.
Resolution
For information on setting up SSL VPN (WebVPN), refer to this document:
VPN Concentrator for WebVPN using the SSL VPN Client Configuration Example
For more information on WebVPN refer the following documents;
