The SSL VPN (aka webvpn) is the most flexible kind of Remote access VPN connection. All you need is an SSL enabled browser - Internet Explorer, Mozilla, Safari etc. I would go right to the configuration.
Web Gateway Configuration:
-Configure AAA for authenticaton:
aaa authentication login VPN local
Configure the webvpn gateway and put it INSERVCIE
! webvpn gateway GATE
ip address 126.96.36.199 port 443
http-redirect port 80 !makes the router to listen on port 80
Immediately after a webvpn gateway command is entered, a self-signed certificate is generated. This CA can be changed using the ssl trustpoint command.
Next the webvpn context is created...
webvpn context SSL
Next, a URL-List is created;
heading "Available Pages"
url-text "Home Page" url-value "books.durable.com" !
For Thin client connection, a port-forwarding list is created.
local-port 3065 remote-server "TELNET" remote-port 23 description "telnet"
The pieces are tied together using the policy group command.
policy group SSLVPN
banner "Login Successful"
timeout idle 300
timeout session 3600
Next we set the default group policy, the AAA authentication list and add a gateway to the context.
aaa authentication list VPN
I prefer to test with the end user - Here are some snapshots.
After successful authentication, we have;
When you click start, you have;
Finally, lets try to telnet to localhost port 3065
Just as we want it :-)
Up Next: Anyconnect :-)