Created on 05-03-2022 02:04 AM Edited on 10-24-2023 01:09 AM By Stephen_G
Description | This article describes how to configure the SSL-VPN settings in order to utilize IP Pools addresses configured on the respective firewall policies. |
Scope | FortiOS versions [ 7.0.6+ ] & [ 7.2.0 ]. |
Solution |
On FortiOS versions v6 and above, it was possible to utilize an IP pool attached on a firewall policy to access bookmarks or internal resources via SSL-VPN Web mode based on the IP which was specified on it.
For example, a firewall policy would look like the following:
config firewall policy edit 1
config firewall ippool
As of 7.0.0 and above, it is now necessary to enable a setting in order for FortiGate to perform source NAT based on the IP pool configured. This is due to internal code changes.
config vpn ssl settings
Related article: Technical Tip: IP pool and virtual IP behavior changes in FortiOS 6.4, 7.0, 7.2, and 7.4. |
Thanks for the info.
Good job!
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.