网络工程 - 在 Cisco 路由器上配置 SSLVPN 的问题 - 吾爱随笔录

所以我将 Cisco Anyconnect 下载到了我的 Nexus 5x 手机上。尝试连接到我的 SSLVPN，但失败了。我从调试中得到以下信息。这是我第一次尝试设置 SSL VPN 并且很想了解更多信息，我已经购买了一本书，但是它不包括在路由器上设置 SSL VPN，所以我可能需要购买另一个或阅读更多白页。我不确定调试信息告诉我什么，或者问题是否与尝试从我的手机连接有关。稍后我将尝试从笔记本电脑安装和测试。路由器是CISCO1921/K9。任何信息都会很棒，我对 VPN 技术非常感兴趣，并且很想了解更多信息。

Router#debug webvpn
WebVPN debugging is on
Router#show log
Oct 12 20:18:01.509: WV: sslvpn process rcvd context queue event
Oct 12 20:18:01.509: WV: sslvpn process rcvd context queue event
Oct 12 20:18:01.521: WV: sslvpn process rcvd context queue event
Oct 12 20:18:01.521: WV: Entering APPL with Context: 0x328661D0, 
      Data buffer(buffer: 0x2C6F83F8, data: 0xE94D758, len: 0, 
      offset: 0, domain: 0)
Oct 12 20:18:01.521: WV: Fragmented App data - buffered
Oct 12 20:18:01.521: WV: Entering APPL with Context: 0x328661D0, 
      Data buffer(buffer: 0x2C6F8418, data: 0xF773E58, len: 1099, 
      offset: 0, domain: 0)
Oct 12 20:18:01.521: WV: http request: / with no cookie
Oct 12 20:18:01.521: WV: validated_tp :  cert_username :  matched_ctx : 
Oct 12 20:18:01.521: WV: failed to get sslvpn appinfo from opssl

Oct 12 20:18:01.521: WV: Error: Failed to get vw_ctx
Oct 12 20:18:01.521: WV: Appl. processing Failed : 2

*********************************************************************************
Router#show run | s webvpn
webvpn gateway GatewayName
 hostname GatewayName
 ip address x.x.x.x port 443  
 http-redirect port 80
 ssl encryption aes128-sha1 aes256-sha1
 ssl trustpoint TP-self-signed-3721036327
 inservice
 !
webvpn context GatewayName
 title "Secure Access: Unauthorized users prohibited"
 !
 acl "webvpn-acl"
   permit ip 10.x.x.x 255.255.255.224 10.x.x.x 255.255.255.224
 login-message "Please enter your login credentials"
 aaa authentication domain domain.com
 gateway GatewayName domain domain.com
 max-users 3
 !
 ssl authenticate verify all
 !
 url-list "MyPages"
   heading "MyPages"
   url-text "companyweb" url-value "http://companyweb.local"
 inservice
 !
 policy group PolicyGroupName
   functions svc-enabled
   banner "Login Successful"
   timeout idle 600
   filter tunnel webvpn-acl
   svc address-pool "SSLVPN" netmask 255.255.255.224
   svc keep-client-installed
   svc rekey method new-tunnel
   svc split include 10.x.x.x 255.255.255.224
   url-list "MyPages"
   hide-url-bar
 default-group-policy PolicyGroupName
Router#show run | i pool
ip local pool SSLVPN 10.x.x.x 10.x.x.x