Cisco Systems 6500 manual Policy group policy-name, Policy ssl policy-name, Policy tcp policy-name

Page 80

Chapter 2 Commands for the Catalyst 6500 Series Switch WebVPN Module

webvpn context

Table 2-7 Virtual WebVPN Context Submode Commands

Command

Purpose and Guidelines

Defaults

 

 

 

policy group policy-name

Enters the group submode and allows you to

 

 

configure group policy settings. See the policy

 

 

group command for information on configuring the

 

 

group policy.

 

 

 

 

policy ssl policy-name

Specifies the SSL policy that the SSL protocol uses.

 

 

 

 

policy tcp policy-name

Specifies the TCP policy that the TCP protocol uses.

 

 

 

 

port-forward listname

Enters the port-forwarding submode and allows you

 

 

to configure the list of ports to which the user has

 

 

access. See the port-forwardcommand for

 

 

information on configuring port forwarding.

 

 

 

 

secondary-color color

Specifies the color of the secondary title bars on the

The default color

no secondary-color

login, home, and file-access pages. See Table 2-8for

is purple.

valid values.

 

 

 

 

 

 

secondary-text-color [black white]

Specifies the color of the text on the secondary bars.

black

no secondary-text-color

It is restricted to be aligned with the title bar text

 

color; valid values are black and white. Use the no

 

 

 

 

form of this command to return to the default setting.

 

 

 

 

ssl authenticate verify {all none}

Configures the SSL protocol uses.

all

 

authenticate verify—Specifies the SSL

 

 

certificate verification method.

 

 

all—Verifies all the CRLs along with

 

 

signature authenticity.

 

 

none—Does not verify the certificate from

 

 

the peer.

 

 

 

 

text-color [black white]

Specifies the color of the text on the title bars. It is

white

no text-color

restricted to just two values to limit the number of

 

icons that need to exist for the toolbar; valid values

 

 

 

 

are black and white. Use the no form of this

 

 

command to return to the default setting.

 

 

 

 

title string

Specifies the HTML title string in the browser title

string is

no title

and on the title bar. Limited to 255 characters. Use

WebVPN

the no form of this command to return to the default

Service.

 

 

setting.

 

 

 

 

title-color color

Specifies the color of the title bars on the login,

The default color

no title-color

home, and file-access pages. See Table 2-8for valid

is purple.

values.

 

 

 

 

 

 

username-prompt prompt

Configures the initial WebVPN login username

prompt is Login:

 

prompt. The maximum length of prompt is 16

 

 

characters.

 

 

 

 

Catalyst 6500 Series Switch WebVPN Module Command Reference—Release 1.1

2-80

OL-7310-01

 

 

Page 79 Page 81
Image 80
Page 79 Page 81
Contents Commands for the Catalyst 6500 Series Switch WebVPN Module Defaults Command Modes Command HistoryClear webvpn nbns Release ModificationClear webvpn platform Webvpn# clear webvpn platform Clear webvpn session Clears the statistics for a specific contextUser name Specifies the user nameClear webvpn stats CifsMangle Port-forwardCrypto key export rsa pem TerminalUrl url 3desKey nametest-keys UsageGeneral Purpose Key Crypto key generate General-keysUsage-keys ExportableCrypto key generate rsa usage-keys This example shows how to generate special-usage RSA keysThis example shows how to generate general-purpose RSA keys Crypto key import rsa pem Release ModificationPEM-formatted RSA key to the WebVPN Services Module Crypto pki authenticate Crypto pki authenticate trustpoint-labelDefaults Command Modes Command History Usage Guidelines Crypto pki certificateCrypto pki crl request name Wwbvpnconfig# crypto pki crl requestCrypto pki crl request This example shows how to request a certificate Webvpnconfig# crypto pki enroll PROXY1Crypto pki enroll Crypto pki enroll trustpoint-labelCrypto pki export pem Related Commands crypto pki import pem Crypto pki export pkcs12 This example shows how to export a PKCS12 file using SCP Wwbvpnconfig# crypto ca export TP1 pkcs12 scp sky is blueInclude the full path in the pkcs12filename value PKCS12 fileCrypto pki import pem Related Commands crypto pki export pem Usage Guidelines ExamplesCrypto pki import pkcs12 This example shows how to import a PKCS12 file using SCP Users/admin-1/pkcs12/TP2.p12Crypto pki profile enrollment label Webvpnconfig# crypto pki profile enrollment testCrypto pki profile enrollment Crypto pki trustpoint Command Purpose and Guidelines Defaults Enrollment http-proxymode ra retry Period minutes-1Period minutes count count url url Count count-10Certificate map mapname command Password passwordMatch certificate mapname map override SkipVrf vrf Subject-name lineUsage ike ssl-client ssl-server Debug webvpn Event app next-hop tcp-Event debugging Trace module module- FDU traceEvents- Events Ca-pool- CA PoolCert- Certificate management This example shows how to turn on tunnel debugging Usage Guidelines Nbns-list Nbns-list name no nbns-list nameExit Master timeoutNbns-server ipaddr Filter tunnel ip-acl Policy groupBanner value string Functions file-access Timeout idleHide-url-bar Nbns-list nameWebvpnconfig# webvpn context cisco Webvpnconfig-webvpn-group#svc address-pool ciscotunlpoolDefault local-port Specifies the default local port valid values are from 1 toPort-forward Port-forward listname no port-forward listnameRelated Commands url-list Webvpn contextWebvpn# show web context tunnel Show webvpn contextShow webvpn context name Show webvpn dispatch Show webvpn dispatch algorithm member statsAlgorithm MemberSslvpn CLB Member Table Webvpn# show webvpn gateway s1 Admin Status up Show webvpn gatewayShow webvpn gateway name Webvpn# show webvpn gatewayShow webvpn install FileCsd StatusWebvpn# show web install file \webvpn\stc\version.txt Show webvpn nbns Show webvpn nbns context name allAll Show web nbns context allShow webvpn-platform buffers module all Show webvpn platform buffersShow webvpn-platform buffers module module Webvpn# show webvpn platform context tunnel Show webvpn platform contextShow webvpn platform context name module module OL-7310-01 Show webvpn platform crash-info Show webvpn platform crash-info brief detailsBrief DetailsNvram Version This Core Didnt Crash Show webvpn platform gateway Show webvpn platform gateway name debug module moduleDebug Module moduleVlan ID This command has no default settings Show webvpn platform mac addressShow webvpn platform mac address ModuleShow webvpn platform policy Show webvpn platform policy ssl tcp nameSsl TcpWebvpn# show webvpn platform version Show webvpn platform versionShow webvpn platform version Webvpn# show webvpn platform vlan Show webvpn platform vlanShow webvpn platform vlan vlan-id Related Commands webvpn policy ssl Show webvpn policyGroup name Context name TcpShow webvpn session Context nameUser name Webvpn# show webvpn session context c1Webvpn# show webvpn stats Show webvpn statsShow webvpn stats type Mangling statistics Relative urls 15705 Absolute urls 41850 DPD Page TCP VCs Active VCs Aborted Conns Webvpn# show web stats context tunnel DPD Snmp-server enable This example shows how to enable authentication traps This example shows how to enable Snmp informsThis example shows how to enable traps Command Modes WebVPN group context submode Command History Release ModificationSvc Dns-server primary secondaryCommand Purpose and Guidelines Default Rekey method new-tunnel ssl No rekey methodRekey time interval No rekey timeUrl-list Url-list listname no url-list listnameHeading text Url-text text url-value url/exchageRelated Commands webvpn context Aaa authentication domain domain-list Specifies AAA configuration parameters for contextDefault-group-policy default-policy-name Webvpn contextInservice Login-message stringNo login-message Password-prompt promptSsl authenticate verify all none Authenticate verify -Specifies the SSLPolicy group policy-name Policy ssl policy-nameColor Name Url-list listnameVrf-name vrf-name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Color Name Webvpnconfig-webvpn-context# url-list cisco 100 Webvpn gateway No policy ssl SecondaryNo policy tcp Context and enter the gateway submode Webvpnconfig# webvpn gateway commonWebvpnconfig-webvpn-gateway#ip address 172.21.65.71 port Webvpn policy ssl No session-cache enable Timeout handshake timeoutTimeout session timeout absolute HelpThis example shows how to enable session-cache This example shows how to disable session-cacheWwbvpnconfig# webvpn policy ssl sslpl1 Wwbvpnconfig-ssl-policy#cipher RSAWITH3DESEDECBCSHAWwbvpnconfig-ssl-policy#timeout session 30000 absolute This example shows how to print out a helpRelated Commands show webvpn stats Timeout syn is 75 seconds Timeout reassembly is 60 seconds Tos carryover is disabledDefault Exit Webvpn policy tcpDelayed-ack-threshold Delay-ack-timeoutNo timeout fin-wait timeout-in-seconds No timeout inactivity timeout-in-secondsNo timeout reassembly time Form of this command to return to the default settingNo tos carryover Server to client connection, the server connection must be111 112
Related manuals
Manual 20 pages 62.17 Kb Manual 160 pages 24.26 Kb Manual 262 pages 31.67 Kb
Top Page Image Contents