
Generate PKI trustpoint
crypto pki trustpoint NETCONF.CO.UK
enrollment selfsigned
subject-name cn=webvpn.netconf.co.uk
revocation-check none
rsakeypair NETCONF.CO.UK-self-signed
!
crypto pki enroll NETCONF.CO.UK
Enable HTTPS
ip http server
ip http access-class 98
ip http authentication aaa
ip http secure-server
ip http path flash:
!
access-list 98 permit 217.205.209.128 0.0.0.15
access-list 98 deny any log
Create SSL Gateway
webvpn gateway SSL
hostname webvpn.netconf.co.uk
ip address INTERNET_ADDRESS port 443
ssl trustpoint NETCONF.CO.UK
inservice
Create SSL Context's
webvpn context LETMEIN
title "WEBVPN.NETCONF.CO.UK: AUTHORISED ACCESS ONLY"
ssl authenticate verify all
!
port-forward "portlist"
local-port 22 remote-server "172.17.0.1" remote-port 22 description "SERVER1 SSH"
local-port 80 remote-server "172.17.0.1" remote-port 80 description "SERVER1 HTTP"
policy group default
port-forward "portlist"
default-group-policy default
gateway SSL domain letmein
max-users 1
inservice
Then point a browser at https://webvpn.netconf.co.uk/letmein/ The browser needs to be running SUN's Java version 5.something or greater
|