FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
hhasny
Staff
Staff
Description

This article describes how to disable SSL-VPN Web Mode or Tunnel Mode for specific portals.

Scope FortiGate.
Solution

Toggle the 'Enable Web Mode' and 'Tunnel Mode' radio button.

 

hhasny_0-1658302999608.png

 

 

From CLI, use the command '# config vpn ssl web portal' and edit the specific portal.

 

In this example SSL-VPN Mode portal.

 

# config vpn ssl web portal

    edit "SSLVPN Mode"

        set tunnel-mode disable <----- Unset tunnel-mode.

        set web-mode disable  <----- Unset web-mode.

        end

end

 

Note.

For Web Mode, although the web mode is disabled, users still are able to log in but will get a warning like below once login.

 

hhasny_1-1658303017157.png