interface Loopback100
description Cisco SSL *** Client for Web***
ip address < loopback addres / subnetmask >
ip flow ingress
ip route-cache same-interface
ip route-cache policy
ip local pool ILP_W***_CLIENT < dhcp pool for the ssl *** client >
web*** gateway WVG_WEB***
ip address < external router ip address > port 443
http-redirect port 80
ssl trustpoint < your certificate >
inservice
!
web*** install svc flash:/web***/svc_1.pkg sequence 1
!
web*** context Default_context
ssl authenticate verify all
!
no inservice
!
!
web*** context web***
title “Site Title”
logo file flash://web***/Logo file.jpg or .gif
color Black
secondary-color Black
title-color Black
ssl authenticate verify all
!
url-list “URL_<name>”
!
nbns-list “NBL_<name>”
nbns-server < your dns server > master
nbns-server < your second dns server > timeout 10 retries 5
login-message “< Sign in message >”
!
policy group PGR_WEB***
url-list “URL_<name>”
nbns-list “NBL_<name>”
functions svc-enabled
banner “< you welcome banner text>”
hide-url-bar
svc address-pool “ILP_W***_CLIENT”
svc default-domain “<your domain name>”
svc keep-client-installed
svc split dns “< your domain name> “
svc split include < internal LAN addres / subnet addres>
svc dns-server primary < your dns server >
svc dns-server secondary < your secondary dns server >
svc wins-server primary < your wins server >
svc wins-server secondary < your secondary wins server >
default-group-policy PGR_WEB***
aaa authentication list W***
gateway WVG_WEB*** domain web***
logging enable
inservice
ip http server
ip http secure-server