Description | This article describes how to configure the SSL-VPN settings in order to utilize IP Pools addresses configured on the respective firewall policies. |
Scope | FortiOS versions [ 7.0.6+ ] & [ 7.2.0 ]. |
Solution |
On v6 FortiOS versions an IP pool attached on a firewall policy could be normally utilized to access bookmarks or internal resources via SSL-VPN Web mode based on the IP which was specified on it.
For example, a firewall policy would look like:
# config firewall policy edit 1
# config firewall ippool
However, since 7.0.0 and due to internal code changes it is necessary to enable a setting in order for FortiGate to perform source NAT based on the IP pool configured.
# config vpn ssl settings |