Search This Blog

Tuesday, January 14, 2014

Cisco ASA access ports

While activating AnyConnect and trying to access the ASDM there might be problem to access one of the services.

ASDM and AnyConnect are using both https (SSL/TLS) on port 443 so you need to move one of them to use some other port:

ASA-LAB# show run http
http server enable 7443
http server idle-timeout 60
http server session-timeout 40
http INSIDE100

Here I configured the ASDM to use port 7443, so when I will try to connect to the ASA with 
ASDM I will have to insert the port number as show here:

 We can also change the AnyConnect port by configuring it under webvpn:

 port 8080
 enable OUTSIDE
 enable INSIDE100
 anyconnect image disk0:/anyconnect-win-3.1.04072-k9.pkg 1
 anyconnect enable
 tunnel-group-list enable

Here I configured the AnyConnect to use port 8080, also note that you will have to add the port in the AnyConnect client:

Any change in the webvpn will force you to shut down the service by issue the command:

 no enable OUTSIDE
 no enable INSIDE100

1 comment:

  1. רכשתם שטח לבנייה ? יופי עכשיו צרו קשר { קבלן בנייה } האוס בנייה וייזמות - קבלן בניין בדרום הכנסו לאתר להתרשם ולא תטעו