1-56
Cisco ASA Series CLI Configuration Guide
 
Chapter 1      Configuring Clientless SSL VPN
  Configuring Application Access
Configuring and Applying a Smart Tunnel Tunnel Policy
Like the split tunnel configuration in SSL VPN client, the smart tunnel tunnel policy is a per 
group-policy/username configuration. Each group policy/username references a globally configured list 
of networks:
Step 3
[no] smart-tunnel network <network name> host <host 
mask>
Establishes the hostname mask, such as *.cisco.com.
Step 4
[no] smart-tunnel tunnel-policy ((excludespecified | 
tunnelspecified) <network name> | tunnelall)
OR
[no] smart-tunnel tunnel-policy ((excludespecified | 
tunnelspecified) <network name> | tunnelall)
Applies smart tunnel policies to a particular group or 
user policy. <network name> is a list of networks to 
be tunneled. <tunnelall> makes everything tunneled 
(encrypted). tunnelspecified tunnels only networks 
specified by network name. excludespecified tunnels 
only networks that are outside of the networks 
specified by network name.
Command Purpose
Command Purpose
[no] smart-tunnel tunnel-policy ((excludespecified | 
tunnelspecified) <network name> | tunnelall)
OR
[no] smart-tunnel tunnel-policy ((excludespecified | 
tunnelspecified) <network name> | tunnelall)
References a globally configured list of networks. 
<network name> is a list of networks to be tunneled. 
<tunnelall> makes everything tunneled (encrypted). 
tunnelspecified tunnels only networks specified by 
network name. excludespecified tunnels only 
networks that are outside of the networks specified 
by network name.