cisco router sslvpn 问题

帮忙看一下路由器的SSLVPN的配置

​

测试报错：

具体代码如下：

aaa new-model

!

!

aaa authentication login vpn_authen local

!

!

aaa session-id common

!

dot11 syslog

ip source-route

!

!

ip cef

!

!

no ipv6 cef

!

multilink bundle-name authenticated

!         

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

voice-card 0

!

!

crypto pki trustpoint TP-self-signed-1330243184

 enrollment selfsigned

 subject-name cn=IOS-Self-Signed-Certificate-1330243184

 revocation-check none

 rsakeypair TP-self-signed-1330243184

!

!

crypto pki certificate chain TP-self-signed-1330243184

 certificate self-signed 01

  3082023F 308201A8 A0030201 02020101 300D0609 2A864886 F70D0101 04050030 

  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 

  69666963 6174652D 31333330 32343331 3834301E 170D3030 30313031 30353338 

  30395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 

  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D31 33333032 

  34333138 3430819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 

  8100B67D 1F7D9DB4 43D34BB4 496C685E 43728D28 7CC704FF CF8FB56B 3C8264A1 

  9920EB86 D887077F 84134EDE 26BBF719 25BEF628 7E568B49 04041AF7 D6E72BFF 

  3D2A5521 AC162B69 F4475289 5CA36EC6 F65101C8 A969EF9E BDEDF197 081402FA 

  17994FA7 BD558095 A9597E51 DA775622 9DD9C915 BFA8CAAF 7E013F74 1DBD70BA 

  98510203 010001A3 67306530 0F060355 1D130101 FF040530 030101FF 30120603 

  551D1104 0B300982 07726F62 696E5254 301F0603 551D2304 18301680 14930329 

  B16EA40C FF7023CE 3D79968D 1C06E4B1 78301D06 03551D0E 04160414 930329B1 

  6EA40CFF 7023CE3D 79968D1C 06E4B178 300D0609 2A864886 F70D0101 04050003 

  8181004E D79342CD AD66C318 E502E6D5 A3211F74 D5DA793F 6F8F3A48 B7117335 

  7E831F60 8957ABD3 715F71D6 1AEE9515 127850E7 A69BE4E9 B15B9FBA 7402B045 

  39DEE2A4 1CD9D5C2 6C3B7AA3 8384B400 7DF3A34E BAAB993F 94E53C48 EC9A4C9A 

  0FCDBEFF 9D424228 73257732 AC73C29E A0C587C5 EFF243C7 62906A1C 0AFF21D2 974186

        quit

!

!

username hengda password 0 Leggett&hd404

archive

 log config

  hidekeys

! 

!

!

!

!

!

!

!

!

interface Loopback0

 ip address 10.10.10.254 255.255.255.0

!

interface GigabitEthernet0/0

 ip address 192.168.20.230 255.255.255.0

 duplex full

 speed 100

 lan-name outside

!

interface GigabitEthernet0/1

 ip address 192.168.80.1 255.255.255.0

 duplex full

 speed 100

 lan-name inside

!

interface BRI0/1/0

 no ip address

 encapsulation hdlc

 shutdown

!

ip local pool vpn_pool 10.10.10.10 10.10.10.200

ip forward-protocol nd

ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0

ip route 192.168.1.0 255.255.255.0 192.168.80.254

ip route 192.168.30.0 255.255.255.0 192.168.80.254

ip route 192.168.100.0 255.255.255.0 192.168.80.254

no ip http server

no ip http secure-server

!

!

!

!

!

!

!

!

!         

control-plane

!

!

!

!

mgcp fax t38 ecm

!

!

!

!

!

!

line con 0

 exec-timeout 0 0

line aux 0

line vty 0 4

 exec-timeout 0 0

 password Leggett01

!

scheduler allocate 20000 1000

!

webvpn gateway vpn_gateway

 ip address 192.168.20.230 port 443  

 ssl trustpoint TP-self-signed-1330243184

 inservice

 !

webvpn install svc flash:/webvpn/svc_1.pkg sequence 1

 !

webvpn context vpn_context

 ssl authenticate verify all

 !

 !

 policy group vpn_group_policy

   functions svc-enabled

   svc address-pool "vpn_pool"

   svc split include 192.168.80.0 255.255.255.0

 default-group-policy vpn_group_policy

 aaa authentication list vpn_authen

 gateway vpn_gateway domain group1

 inservice

!

end