Fortinet ssl vpn simple config - 飞塔技术

姓名：大萝卜职业：听人说，技术支持是IT业最鸡肋的职业，于是我便开始郁闷起来! 个性签名: 我以为我们同属于/30，Ping出Timed out才明白处于不同的Vlan。我尝试着用爱做为Route，并用Traceroute来验证，可是Netstat的Syn_received结果让我无比伤心。于是我选择了deny any和deny ip any any,但是我心里一直期待着Vpn那天的到来,请将我放在你的Acl之内。 Mailto:bxz1981#gmail.com

There are some steps to make a SSLVPN works:

1/ Create as many user accounts as you need

2/ Create a User Group to contain the users for SSLVPN authentication
[a.] Make sure the Type for User Group is set to "SSL VPN".
[b.] In the "SSL-VPN User Group Options" section, check to enable SSL-VPN Tunnel Service and/or enable Web Application (select which protocol)
[c.] Check to enable cache clean (*optional*)

3/ In VPN section, click SSL -> Config tag
[a.] Check to enable SSL-VPN
[b.] Leave the port no. as 10443 or change it as you like (*optional*)
[c.] Set a "Tunnel IP Range" in your internal subnet like 10.0.0.100-10.0.0.120 (*MUST*)

4/ Leave other options as default value

5/ Create a SSLVPN policy
[a.] From port2 (external) to port1 (internal)
[b.] Source address=0.0.0.0/0.0.0.0, Destination address=[your internal netwok] or 0.0.0.0/0.0.0.0
[c.] Set Action as "SSL-VPN"
[d.] Include the SSLVPN User Group to this policy

如果您对文章中有任何不解,请使用下面的baidu搜索.