Hello Tyson, Thanks for the suggestions... Smart tunnel works like this... if i configure putty.exe as one of the application in smart tunnel config... then as soon as the tunnel is established everytime i do anything with putty.exe that traffic would be encrypted in SSL VPN and sent over the SSL VPN Tunnel to the other end... same way if i define excel.exe is smart tunnel applications then all files which have .xls extension and which are opened from CIFS server behind the ssl vpn tunnel end point device would be sent in an encrypted format in the SSL Tunnel. Please correct me if i am wrong What i want to achieve is that... i have some ERP and CRM Servers in one of the DMZ... i would like to authenticate SSL VPN Session and then from the SSL VPN portal page i want that there should be icons there and i click the ERP application icon, then ERP application should open up from the DMZ server. same way other applications should open up as i click there icons on SSL VPN portal page (not the logon page).... any suggestions ?
Thanks & Regards Sumit Mahla CCIE Security #26418, CCNP, CCNA, IBM India - Data Center Design & Implementation M: +91 8892128949 +91 9999274343 E: [email protected] "Nothing in this world that's worth having comes easy." From: [email protected] To: [email protected]; [email protected] Subject: RE: [OSL | CCIE_Security] SSL VPN application access Date: Thu, 11 Nov 2010 12:24:56 -0500 My understanding is that smart tunnel is the replacement for port forwarding. So I recommend using smart tunneling for this solution. Regards, Tyson Scott - CCIE #13513 R&S, Security, and SP Managing Partner / Sr. Instructor - IPexpert, Inc. Mailto: [email protected] Telephone: +1.810.326.1444, ext. 208 Live Assistance, Please visit: www.ipexpert.com/chat eFax: +1.810.454.0130 IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, Audio Tools, Online Hardware Rental and Classroom Training for the Cisco CCIE (R&S, Voice, Security & Service Provider) certification(s) with training locations throughout the United States, Europe, South Asia and Australia. Be sure to visit our online communities at www.ipexpert.com/communities and our public website at www.ipexpert.com From: [email protected] [mailto:[email protected]] On Behalf Of Sumit Mahla Sent: Thursday, November 11, 2010 7:13 AM To: [email protected] Subject: [OSL | CCIE_Security] SSL VPN application access Hello Tyson, Hello All, I want to implement ERP and CRM application access and about 45 other TCP based application through SSL VPN. Port forwading, bookmark List and the smart tunnel feature supports this implementation. Could you please suggest which is the best solution.... ? I am thinking of smart tunnel with bookmark list... Can i create a citrix kind of environment without using citrix server ? I mean as soon as the SSL vpn authentication is done a wbpage with different application icon should appear and clicking on any of the link opens up the particular application. I also want to implement Cisco Secure desktop intergration with this SSL... But only for creating the Secure Vault environment Please suggest the best solution. I am doing a lot of experiments with SSL VPN technology. please suggest you inputs.. Thanks in advance. Regards Sumit Mahla
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
