Chapter21 Cisco IOS SSLVPN
Editing SSL VPN Connections
21-30
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
Note You must specify the location of the Full Tunnel client software by clicking
Packages in the SSL VPN tree, specifying the location of the install bundle, and
then clicking Install.
Enable Full Tunnel connections by choosing Enable from the list. If you want to
require Full Tunnel connections, choose Required. If you choose Required,
Clientless and Thin Client communication will work only if the CiscoIOS
SSLVPN client software is successfully installed on the client PC.
IP address pool from which clients will be assigned an IP address
Clients who establish Full Tunnel communication are assigned IP addresses by
the router. Specify the name of the pool, or click the ... button to create a new pool
from which the router can assign addresses.
Keep full-tunnel client software installed on client’s PC Checkbox
Check if you want the Full Tunnel software to remain on the client’s PC after they
have logged off. If you do not check this checkbox, clients download the software
each time they establish communication with the gateway.
Renegotiate Key field
Enter the number of seconds after which the tunnel should be brought down so
that a new SSL key can be negotiated and the tunnel can be reestablished.
ACL to restrict access for users in this group to corporate resources
You can choose or create an access list (ACL) that specifies the resources on the
corporate network that group members will be restricted to.
Home page client should see when a web browser is opened with full tunnel software installed
Enter the URL to the home page that is to be displayed to full-tunnel clients in this
group.