Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
hhasny
Staff
Staff

Created on ‎07-20-2022 12:52 AM Edited on ‎02-06-2024 09:04 PM By Community Manager

Article Id 217990

Technical Tip: How to disable SSL VPN Web Mode or Tunnel Mode in SSL VPN portal

Description

This article describes how to disable SSL VPN Web Mode or Tunnel Mode for specific portals.
Scope FortiGate.
Solution

Toggle the 'Enable Web Mode' and 'Tunnel Mode' radio buttons.

 

hhasny_0-1658302999608.png

 

 

From CLI, use the command 'config vpn ssl web portal' and edit the specific portal.

 

In this example SSL VPN Mode portal.

 

config vpn ssl web portal

    edit "SSLVPN Mode"

        set tunnel-mode disable <----- Unset tunnel-mode.

        set web-mode disable  <----- Unset web-mode.

        end

end

 

Note.

For Web Mode, although the web mode is disabled, users still can log in but will get a warning like below once log in.

 

hhasny_1-1658303017157.png

 

 

To completely remove the SSL VPN web portal from being displayed when SSL VPN mode is disabled, follow the steps from the below link. Remove the HTML body section of the SSL VPN login page replacement message:

How to prevent the SSL-VPN web login portal from displaying when SSL-VPN web mode is disabled 

 

24936
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.