Automating port forwarding, Enabling and disabling port forwarding – Cisco ASA 5505 User Manual
Page 1656
 
74-70
Cisco ASA 5500 Series Configuration Guide using the CLI
Chapter 74 Configuring Clientless SSL VPN
Configuring Port Forwarding
For details, go to the section that addresses the option you want to use.
Automating Port Forwarding
To start port forwarding automatically upon user login, enter the following commands:
Detailed Steps
Enabling and Disabling Port Forwarding
By default, port forwarding is disabled.
Command
Purpose
Step 1
webvpn
Switches to webvpn configuration mode.
Step 2
group-policy webvpn
username webvpn
Switches to group-policy webvpn configuration 
mode.
Switches to username webvpn configuration mode.
Step 3
port-forward auto-start list_name
Example:
hostname(config-group-policy)# webvpn
hostname(config-group-webvpn)# port-forward
auto-start apps1
Starts port forwarding automatically upon user 
login.
list_name names the port forwarding list already 
present in the ASA webvpn configuration. You 
cannot assign more than one port forwarding list to 
a group policy or username.
Assigns the port forwarding list named apps1 to the 
group policy.
Step 4
show run webvpn port-forward
Displays the port forwarding list entries present in 
the ASA configuration.
Step 5
(Optional)
no port-forward
Removes the port-forward command from the group 
policy or username and reverts to the default.