Automating port forwarding, Enabling and disabling port forwarding – Cisco ASA 5505 User Manual

74-70

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 74 Configuring Clientless SSL VPN

Configuring Port Forwarding

For details, go to the section that addresses the option you want to use.

Automating Port Forwarding

To start port forwarding automatically upon user login, enter the following commands:

Detailed Steps

Enabling and Disabling Port Forwarding

By default, port forwarding is disabled.

Command

Purpose

Step 1

webvpn

Switches to webvpn configuration mode.

Step 2

group-policy webvpn

username webvpn

Switches to group-policy webvpn configuration
mode.

Switches to username webvpn configuration mode.

Step 3

port-forward auto-start list_name

Example:

hostname(config-group-policy)# webvpn

hostname(config-group-webvpn)# port-forward

auto-start apps1

Starts port forwarding automatically upon user
login.

list_name names the port forwarding list already
present in the ASA webvpn configuration. You
cannot assign more than one port forwarding list to
a group policy or username.

Assigns the port forwarding list named apps1 to the
group policy.

Step 4

show run webvpn port-forward

Displays the port forwarding list entries present in
the ASA configuration.

Step 5

(Optional)

no port-forward

Removes the port-forward command from the group
policy or username and reverts to the default.