Escolar Documentos
Profissional Documentos
Cultura Documentos
High-level procedures:
Info taken from: http://whitehat.williamlee.org/2010/05/fortigate-ssl-vpn-how-to.html
1) Setup user group(s) that allow SSL VPN access and include intended users
2) Setup user account(s)
3) Setup tunnel mode IP address range
4) Add the tunnel mode IP address range to static route
5) Load the private key and certificate to the box
6) Enable SSL VPN, Specify SSL VPN portal TCP port to use 8443
7) Create Firewall Policy to allow SSL VPN and/or tunnel mode access
8) Restart Firewall to allow the login from web-site with port 8443
1) First rule to create is to allow VPN connected users to access the internet
2) Next is to allow SSL connection through from the WAN
Note the 29.1 as it’s a requirement to specify who (which user group) has access to the server.