Cisco Systems 6500 manual Gateway gateway-namedomain-name, Inservice, Login-message string

Page 79

Chapter 2 Commands for the Catalyst 6500 Series Switch WebVPN Module

webvpn context

Table 2-7 Virtual WebVPN Context Submode Commands

 

Command

 

Purpose and Guidelines

Defaults

 

 

 

 

 

 

 

 

gateway gateway-name{{domain-name

 

Specifies the corresponding virtual gateway instance

Virtualization is

 

domain-name} {virtual-hosthostname}}

 

configured on the secure gateway and the mapping

performed

 

 

 

methods (for example, IP address, URL, and domain

through a unique

 

 

 

name) as follows:

IP address.

 

 

 

gateway-name—Name of the virtual gateway

 

 

 

 

 

 

 

 

 

configured on the system.

 

 

 

 

 

 

 

 

 

domain-namedomain-name—(Optional) Maps

 

 

 

 

 

 

 

 

 

to a specific domain name. The domain-name

 

 

 

 

 

 

 

 

 

argument is a ASCII string, which is used to

 

 

 

 

 

 

 

 

 

specify a corporate-specific domain name (for

 

 

 

 

 

 

 

 

 

example, cisco.com) for the virtual WebVPN

 

 

 

 

 

 

 

 

 

instance.

 

 

 

 

 

 

 

 

 

virtual-hosthostname—(Optional) Maps to a

 

 

 

 

 

 

 

 

 

specific virtual host.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

inservice

 

Brings context to inservice.

 

 

 

 

 

 

 

 

 

 

 

 

 

login-message string

 

Specifies the text that prompts the user to login.

string is Please

 

no login-message

 

Limited to 255 characters. Use the no form of this

enter your

 

 

command to return to the default setting.

username and

 

 

 

 

 

 

 

password.

 

 

 

 

 

 

 

 

 

 

 

logo [file filename none]

 

Specifies the custom logo image that is displayed on

 

 

 

 

 

 

 

 

 

the login and home pages.

 

 

 

 

 

 

 

 

 

file filename—(Optional) Specifies the filename of a

 

 

 

 

 

 

 

 

 

file that is uploaded by the administrator to the

 

 

 

 

 

 

 

 

 

security gateway.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

nat-addressstart-address end-address

 

Specifies the NAT addresses to be used in opening a

 

 

 

 

 

 

 

{netmask netmask}

 

server connection. The addresses specified in the

 

 

 

 

 

 

 

 

 

nat-addresscommand must match one of the

 

 

 

 

 

 

 

 

 

subnets configured on the WebVPN subinterfaces.

 

 

 

 

 

 

 

 

 

start-address—Starting IP address that defines

 

 

 

 

 

 

 

 

 

the range of addresses in the address pool.

 

 

 

 

 

 

 

 

 

end-address—Ending IP address that defines

 

 

 

 

 

 

 

 

 

the range of addresses in the address pool.

 

 

 

 

 

 

 

 

 

netmask netmask—Network mask that

 

 

 

 

 

 

 

 

 

indicates which address bits belong to the

 

 

 

 

 

 

 

 

 

network and subnetwork fields and which bits

 

 

 

 

 

 

 

 

 

belong to the host field. Specify the netmask of

 

 

 

 

 

 

 

 

 

the network to which the pool addresses belong.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

nbns-list name

 

Enters nbmslist submode and allows you to create

 

 

 

 

 

 

 

 

 

the NBNS list name. See the nbns-listcommand for

 

 

 

 

 

 

 

 

 

information on configuring the NBNS list.

 

 

 

 

 

 

 

 

 

 

 

 

 

password-prompt prompt

 

Configures the initial WebVPN login password

prompt is

 

 

 

prompt. The maximum length of prompt is 16

Password:

 

 

 

characters.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Catalyst 6500 Series Switch WebVPN Module Command Reference—Release 1.1

 

 

 

 

 

 

 

 

OL-7310-01

 

 

 

 

2-79

 

 

 

 

 

 

 

Page 78 Page 80
Image 79
Page 78 Page 80
Contents Commands for the Catalyst 6500 Series Switch WebVPN Module Release Modification DefaultsCommand Modes Command History Clear webvpn nbnsClear webvpn platform Webvpn# clear webvpn platform Specifies the user name Clear webvpn sessionClears the statistics for a specific context User namePort-forward Clear webvpn statsCifs Mangle3des Crypto key export rsa pemTerminal Url urlKey nametest-keys UsageGeneral Purpose Key Exportable Crypto key generateGeneral-keys Usage-keysThis example shows how to generate general-purpose RSA keys This example shows how to generate special-usage RSA keysCrypto key generate rsa usage-keys Release Modification Crypto key import rsa pemPEM-formatted RSA key to the WebVPN Services Module Crypto pki authenticate trustpoint-label Crypto pki authenticateCrypto pki certificate Defaults Command Modes Command History Usage GuidelinesCrypto pki crl request Wwbvpnconfig# crypto pki crl requestCrypto pki crl request name Crypto pki enroll trustpoint-label This example shows how to request a certificateWebvpnconfig# crypto pki enroll PROXY1 Crypto pki enrollCrypto pki export pem Related Commands crypto pki import pem Crypto pki export pkcs12 PKCS12 file This example shows how to export a PKCS12 file using SCPWwbvpnconfig# crypto ca export TP1 pkcs12 scp sky is blue Include the full path in the pkcs12filename valueCrypto pki import pem Usage Guidelines Examples Related Commands crypto pki export pemCrypto pki import pkcs12 Users/admin-1/pkcs12/TP2.p12 This example shows how to import a PKCS12 file using SCPCrypto pki profile enrollment Webvpnconfig# crypto pki profile enrollment testCrypto pki profile enrollment label Crypto pki trustpoint Command Purpose and Guidelines Defaults Count count-10 Enrollment http-proxymode ra retryPeriod minutes-1 Period minutes count count url urlSkip Certificate map mapname commandPassword password Match certificate mapname map overrideUsage ike ssl-client ssl-server Subject-name lineVrf vrf Debug webvpn Trace module module- FDU trace Event app next-hop tcp-Event debuggingCert- Certificate management Ca-pool- CA PoolEvents- Events This example shows how to turn on tunnel debugging Usage Guidelines Nbns-list name no nbns-list name Nbns-listNbns-server ipaddr Master timeoutExit Banner value string Policy groupFilter tunnel ip-acl Nbns-list name Functions file-accessTimeout idle Hide-url-barWebvpnconfig-webvpn-group#svc address-pool ciscotunlpool Webvpnconfig# webvpn context ciscoPort-forward listname no port-forward listname Default local-portSpecifies the default local port valid values are from 1 to Port-forwardWebvpn context Related Commands url-listShow webvpn context name Show webvpn contextWebvpn# show web context tunnel Member Show webvpn dispatchShow webvpn dispatch algorithm member stats AlgorithmSslvpn CLB Member Table Webvpn# show webvpn gateway Webvpn# show webvpn gateway s1 Admin Status upShow webvpn gateway Show webvpn gateway nameStatus Show webvpn installFile CsdWebvpn# show web install file \webvpn\stc\version.txt Show web nbns context all Show webvpn nbnsShow webvpn nbns context name all AllShow webvpn-platform buffers module module Show webvpn platform buffersShow webvpn-platform buffers module all Show webvpn platform context name module module Show webvpn platform contextWebvpn# show webvpn platform context tunnel OL-7310-01 Details Show webvpn platform crash-infoShow webvpn platform crash-info brief details BriefNvram Version This Core Didnt Crash Module module Show webvpn platform gatewayShow webvpn platform gateway name debug module module DebugVlan ID Module This command has no default settingsShow webvpn platform mac address Show webvpn platform mac addressTcp Show webvpn platform policyShow webvpn platform policy ssl tcp name SslShow webvpn platform version Show webvpn platform versionWebvpn# show webvpn platform version Show webvpn platform vlan vlan-id Show webvpn platform vlanWebvpn# show webvpn platform vlan Context name Tcp Related Commands webvpn policy sslShow webvpn policy Group nameWebvpn# show webvpn session context c1 Show webvpn sessionContext name User nameShow webvpn stats type Show webvpn statsWebvpn# show webvpn stats Mangling statistics Relative urls 15705 Absolute urls 41850 DPD Page TCP VCs Active VCs Aborted Conns Webvpn# show web stats context tunnel DPD Snmp-server enable This example shows how to enable traps This example shows how to enable Snmp informsThis example shows how to enable authentication traps Dns-server primary secondary Command Modes WebVPN group context submodeCommand History Release Modification SvcCommand Purpose and Guidelines Default No rekey time Rekey method new-tunnel sslNo rekey method Rekey time intervalUrl-text text url-value url/exchage Url-listUrl-list listname no url-list listname Heading textRelated Commands webvpn context Webvpn context Aaa authentication domain domain-listSpecifies AAA configuration parameters for context Default-group-policy default-policy-namePassword-prompt prompt InserviceLogin-message string No login-messagePolicy ssl policy-name Ssl authenticate verify all noneAuthenticate verify -Specifies the SSL Policy group policy-nameVrf-name vrf-name Url-list listnameColor Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Webvpnconfig-webvpn-context# url-list cisco 100 Webvpn gateway No policy tcp SecondaryNo policy ssl Webvpnconfig-webvpn-gateway#ip address 172.21.65.71 port Webvpnconfig# webvpn gateway commonContext and enter the gateway submode Webvpn policy ssl Help No session-cache enableTimeout handshake timeout Timeout session timeout absoluteWwbvpnconfig-ssl-policy#cipher RSAWITH3DESEDECBCSHA This example shows how to enable session-cacheThis example shows how to disable session-cache Wwbvpnconfig# webvpn policy ssl sslpl1Related Commands show webvpn stats This example shows how to print out a helpWwbvpnconfig-ssl-policy#timeout session 30000 absolute Webvpn policy tcp Timeout syn is 75 secondsTimeout reassembly is 60 seconds Tos carryover is disabled Default ExitNo timeout inactivity timeout-in-seconds Delayed-ack-thresholdDelay-ack-timeout No timeout fin-wait timeout-in-secondsServer to client connection, the server connection must be No timeout reassembly timeForm of this command to return to the default setting No tos carryover111 112
Related manuals
Manual 20 pages 62.17 Kb Manual 160 pages 24.26 Kb Manual 262 pages 31.67 Kb
Top Page Image Contents