Cisco 5505 Administration Guide - Page 59
Configuring AnyConnect Features Using CLI, Enabling Datagram Transport Layer Security (DTLS) - modulator
UPC - 882658082252
View all Cisco 5505 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 59 highlights
6 C H A P T E R Configuring AnyConnect Features Using CLI The AnyConnect client includes the following features, which you configure on the security appliance: • Enabling Datagram Transport Layer Security (DTLS) with AnyConnect (SSL) Connections, page 6-1 • Prompting Remote Users, page 6-2 • Enabling IPv6 VPN Access, page 6-3 • Enabling Modules for Additional AnyConnect Features, page 6-4 • Configuring Certificate-only Authentication, page 6-5 • Using Compression, page 6-5 • Configuring the Dynamic Access Policies Feature of the Security Appliance, page 6-6 • Configuring the Dynamic Access Policies Feature of the Security Appliance, page 6-6 • Cisco Secure Desktop Support, page 6-6 • Enabling AnyConnect Rekey, page 6-6 • Enabling and Adjusting Dead Peer Detection, page 6-7 • Enabling AnyConnect Keepalives, page 6-8 Enabling Datagram Transport Layer Security (DTLS) with AnyConnect (SSL) Connections Datagram Transport Layer Security avoids latency and bandwidth problems associated with some SSL-only connections, including AnyConnect connections, and improves the performance of real-time applications that are sensitive to packet delays. DTLS is a standards-based SSL protocol that provides a low-latency data path using UDP. For detailed information about DTLS, see RFC 4347 (http://www.ietf.org/rfc/rfc4347.txt). Datagram Transport Layer Security (DTLS) allows the AnyConnect client establishing an SSL VPN connection to use two simultaneous tunnels-an SSL tunnel and a DTLS tunnel. Using DTLS avoids latency and bandwidth problems associated with some SSL connections and improves the performance of real-time applications that are sensitive to packet delays. If you do not enable DTLS, SSL VPN connections connect with an SSL VPN tunnel only. OL-12950-012 Cisco AnyConnect VPN Client Administrator Guide 6-1