Hello, This is for the new guys in the group. As you already know the ASA is not like the regular routers where you can simply enable a URL list put the value and that is it. The ASA requires you to configure an XML based URL list that later on you need to import to your webvpn configuration.
Sure ASDM is really easy to use and it practically will do it for you automatically, however, on your CCIE exam, you dont have that option. That being said, this is just a little example on how you can go easy around the issue and dont have to read how to program in XML (You XML writers, you are safe :)) export webvpn url-list template tftp://x.x.x.x/CCIE That will get to your TFTP server and you will see something like: <?xml version="1.0" encoding="UTF-8"?> <url-list> <title l10n="yes">NEW CCIE LIST</title> <favorite>yes</favorite> <bookmark> <title l10n="yes">SWITCH </title> <method>get</method> <favorite>yes</favorite> <url>http://x.x.x.x</url> <subtitle l10n="yes"></subtitle> <thumbnail l10n="yes"></thumbnail> <smart-tunnel></smart-tunnel> <window>current|new</window> </bookmark> </url-list> The ones in in red are the ones that you can modify simply. Then you need to import the file (very important, the file does not have an extension, or maybe it does but I dont know what it is :D) import webvpn url-list WEBVPN-LIST tftp://x.x.x.x/CCIE Then on your webvpn group policy, you just need to configure it: group-policy SSLVPN attributes vpn-tunnel-protocol webvpn webvpn url-list value WEBVPN-LIST That pretty much will do it. Hope it helps. Mike.
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
