ASA 5510 SSL V PN 与第三方证书 认证测试 创建日期:2011-11-23 创建人:张中元_Zaim 版本号:1.0.0 目 录 1、测试概述........................................................................................................................................... 3 1.1 测试要求.................................................................................................................................. 3 1.2 测试拓扑.................................................................................................................................. 3 2、ASA 配置............................................................................................................................................ 4 2.1 命令行配置.............................................................................................................................. 4 2.2 ASDM 模式配置........................................................................................................................7 2.3 CA 根证书的导入.................................................................................................................. 1 0 3、SSL VPN 客户端配置...................................................................................................................... 1 3 3.1、证书安装............................................................................................................................. 1 3 3.2、SSL VPN 客户端连接设置.................................................................................................. 1 5 1、测试概述 1.1 测试要求 CISCO ASA 5510是防火墙,带SSL VPN功能,主要测试要求如下: 1、配置ASA的SSL VPN 2、ASA和EPS联动 3、Client可以通过EPS下发的证书进行认证并访问内网 1.2 测试拓扑 2、ASA 配置 2.1 命令行配置 ASA Version 8.4(1) ! hostname cisco enable password cisco encrypted passwd cisco encrypted username cisco password cisco encrypted privilege 15 ! interface Ethernet0/0...