Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Fenx
New Contributor

SSL VPN - Split Tunnelling with exceptions

Hi everybody, I have a question about a technical feasibility on the Fortigate 600D range. I have a client who owns among other things a Fortigate 600D to go out on the Internet. From their personal home, users connect in SSL VPN via the Forti client with the "Split Tunneling" mode enabled on the Firewall to avoid cluttering the network and exit on the Internet via their local gateway (at home) and not the VPN-SSL of the company. It works very well, my client will just want to make a change to that. He would like for only 3 Internet links (http or https) to exit via the SSL VPN and to squeeze the "Split Tunneling" but only for these 3 Internet links. (3 public IP addresses). Thank you very much for the answer you can give me.

2 REPLIES 2
Fenx
New Contributor

I know I have to add an FQDN object in Routing Address in "Enable tunneling" but we can add only a network or a fixed ip.

Thanks.
saneeshpv_FTNT

You will be able to add multiple entry in the list of Routing Address where you enabled Split Tunnel.

Refer attached image.

 

Hope this is what you are looking for.

Regards,

Saneesh

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors