SSL.basic.policy
ssl server:
enable
conf t
hostname ssl.server
aaa new-model
aaa authentication login noacs line none
aaa authentication login ssl local
username cisco pawssword 0 cisco
inter f0/0
ip add 202.100.1.1 255.255.255.0
no shut
int f1/0
ip add 10.1.1.1 255.255.255.0
no sh
line con 0
login authentication noacs
line aux 0
login authentication noacs
line vty 0 4
login authentication noacs
webvpn gateway gw
ip add 202.100.1.1 port 443
inservice
webvpn context c1
aaa authentication list ssl
gateway gw
inservice
end
wr
配置policy
webvpn context c1
policy group one
banner "welcome"
default-group-policy one(调用policy)
hide-url-bar(隐藏登陆后的输入url的框)
exit
url-list router.server(调用名字)
url-text router.server(在页面显示名字) url-value http:10.1.1.200
调用url-list
webvpn context c1
policy group one
url-list router.server
timeout idle 1800(空闲多少时间踢掉)
timeout session 36000(会话最长时间36000秒)