Cisco Systems CL-28826-01 Security Camera User Manual


  Open as PDF
of 2616
 
29-31
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 29 Managing Remote Access VPNs: The Basics
Using the Remote Access VPN Configuration Wizard
Creating SSL VPNs Using the Remote Access VPN Configuration Wizard (IOS
Devices)
This procedure describes how to create or edit SSL VPNs on IOS devices using the Remote Access SSL
VPN Configuration Wizard.
Related Topics
Understanding Remote Access SSL VPNs, page 29-2
Understanding Devices Supported by Each Remote Access VPN Technology, page 29-8
Step 1 In Device view, select the desired IOS device.
Step 2 From the Policy selector, select Remote Access VPN > Configuration Wizard.
Step 3 Select the Remote Access SSL VPN radio button.
Step 4 Click Remote Access Configuration Wizard. The Gateway and Context page opens. For a description
of the elements on this page, see SSL VPN Configuration Wizard—Gateway and Context Page (IOS),
page 29-32.
Step 5 Select the gateway to be used as a proxy for connections to the protected resources in your SSL VPN.
Options are:
Use Existing Gateway—Lets you use an existing gateway object. If you select this option, specify
the name of the SSL VPN Gateway policy object that defines the gateway. Click Select to select the
object or to create a new object.
Create Using IP Address—Lets you configure a new gateway object using a reachable (public,
static) IP address on the router. Enter the IP address.
Create Using Interface—Lets you configure a new gateway using the public, static IP address of a
router interface. Select the interface or interface role object.
If you elected to create a new gateway using an IP address or an interface:
Specify a gateway name.
Specify the number of the port that will carry the HTTPS traffic. The default is 443, unless HTTP
port redirection is enabled, in which case the default HTTP port number is 80. If you want to use a
different port, it must be between 1024 and 65535.
Step 6 Enter the name of the name of the context that defines the virtual configuration of the SSL VPN.
IPSec Proposal Defines the crypto maps required to set up IPsec security associations
(SAs), including IPsec rules, transform sets, remote peers, and other
parameters that might be necessary to define an IPsec SA.
Public Key Infrastructure Defines the Public Key Infrastructure (PKI) policy used to generate PKI
enrollment requests for PKI certificates and RSA keys.
VPN Global Settings Defines global settings for IKE, IPsec, IKEv2, NAT, and fragmentation
that apply to devices in your remote access VPN.
Table 29-8 Remote Access VPN Configuration Wizard, Defaults Page (Continued)
Element Description