Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
CAD
Contributor

Restrict Vpn users to Access specific internal server

Hi all,

I have 200D running 5.2.11, and using SSL vpn

I need to allow VPN remote users to access certain internal servers.

 

Design network :

we have three interfaces (internal , Wan,DMZ)

I have tried to create Fwpolicy but this deny users from connect to VPN. Almost servers connected to internal interface

 

Thanks

2 REPLIES 2
adogra
New Contributor

Hi,

 

As you've mentioned certain internal servers. What you can do is:

 

- Create addresses in firewall for those servers IP's or range if you have.

- Create another IPv4 policy for SSL VPN users or instead edit existing SSL VPN policy and add those Server range or multiple addresses that you have added as an addresses in firewall.

 

Hope this helps.

 

Cheers

Atul

 

 

 

 

CAD

Thank you for response

As i mentioned above , once create policy for ssl vpn it deny user form connect to vpn

i want allow user which appeared in the policy to access the DC server only.

 

 check the policy in screenshot.

 

Thanks

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors