Configuration Wizards
Using the Remote Access VPN Wizard
Cisco ISA500 Series Integrated Security Appliances Administration Guide 65
2
for tunneling DNS requests to destinations in the private network, enter the
IP address or domain name in the field and click Add. To delete a domain,
select it from the list and click Delete.
STEP 13 In the Zone-based Firewall Settings area, you can control access from the SSL
VPN clients to the zones over the SSL VPN tunnels. Click Permit to permit access,
or click Deny to deny access.
NOTE: The VPN firewall rules that are automatically generated by the zone-based
firewall settings will be added to the list of firewall rules with the priority higher
than the default firewall rules, but lower than the custom firewall rules.
STEP 14 Click OK to save your settings.
STEP 15 After you are finished, click Next.
Configuring SSL VPN User Groups
STEP 16 Use the User Group page to configure the users and user groups for SSL remote
access. The SSL VPN service must be enabled for the user groups. All members
of a user group can use the selected SSL VPN group policy to establish the SSL
VPN connections.
STEP 17 Click Add to add a user group.
Other options: To edit an entry, click the Edit (pencil) icon. To delete an entry, click
the Delete (x) icon. To delete multiple entries, check them and click Delete.
STEP 18 In the Group Settings tab, enter the following information:
Name: Enter the name for the user group.
Services: Specify the service policy for the user group. The SSL VPN
service must be enabled for this user group so that all members of the user
group can establish the SSL VPN tunnels based on the selected SSL VPN
group policy to access your network resources.
STEP 19 In the Membership tab, specify the members of the user group. You must add at
least one user in the user group before proceeding.
To add a member, select an existing user from the User list and then click the
right arrow. The members of the group appear in the Membership list.
To delete a member from the group, select the member from the
Membership list and then click the left arrow.