Set Source IP Pools to use the default IP range SSLVPN_TUNNEL-ADDR1. Make sure Enable Split Tunneling is not selected, so that all Internet traffic will go through the FortiGate. The full-access portal allows the use of tunnel mode and/or web mode. Go to VPN > SSL-VPN Portals to edit the full-access portal. Editing the SSL VPN portal for remote users Go to User & Device > User Groups to create a user group for SSL VPN users and add the new user account.Ģ. Go to User & Device > User Definition to create a local user account for a SSL VPN user. During the connecting phase, the FortiGate will also verify that the remote user’s antivirus software is installed and up-to-date.įind this recipe for other FortiOS versionsĥ.2 | 5.4 | 5.6 1. Web mode allows users to access network resources, such as the Internal Segmentation Firewall (ISFW) used in this example.įor users connecting via tunnel mode, traffic to the Internet will also flow through the FortiGate, to apply security scanning to this traffic. In this example, you will allow remote users to access the corporate network using an SSL VPN, connecting either by web mode using a web browser or tunnel mode using FortiClient.
0 kommentar(er)
