Beruflich Dokumente
Kultur Dokumente
SSL VPN
Module 5
2013 Fortinet Training Services. This training may not be recorded in any medium, disclosed, copied, reproduced or
1 distributed to anyone without prior written consent of an authorized representative of Fortinet. Rev. 20130215-C
Module Objectives
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs SSL VPN
FortiGate VPN
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs SSL VPN
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs SSL VPN
User Groups
Web mode and tunnel mode both require a firewall policy for
authentication
Tunnel mode requires additional policies to allow internal network
access
Mode(s) user has access to is determined by authentication policy
Determines the portal page users are presented
Authentication
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs SSL VPN
10
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs SSL VPN
11
12
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs SSL VPN
Only traffic destined for the tunnel IP range network will be routed over
the SSL VPN
If access to another inside network is desired, the client will need to
create a static route pointing to their own SSL VPN interface
Associated firewall policies must exist
13
14
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs SSL VPN
16
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs SSL VPN
17
18
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs SSL VPN
19
Configuration
20
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs SSL VPN
Configuration
21
Labs
22
01-50000-0201-20130215-C
Course 201 - Administration, Content Inspection and VPNs SSL VPN
23
01-50000-0201-20130215-C