I'm working on a 60E FortiGate firewall that was recently upgraded to 6.0.2. When I run the Security Rating it says that all interfaces should be classified as LAN, WAN, or DMZ. We have an interface SSL-VPN tunnel interface (ssl.root) that is not classified. What classification should this interface have, LAN, WAN, or DMZ? How is this classification set?
SecurityPlus wrote:Did you find out how to classify SSL-VPN tunnel interface (ssl.root)?
Does anyone have a suggestion as to how to respond to the security ratings issue?
...further searching brought "WAN" as the "candidate" answer:
https://forum.fortinet.com/tm.aspx?m=158094
https://community.spiceworks.com/topic/2083065-fortigate-interface-role-for-ssl-vpn-tunnel-interface
User | Count |
---|---|
1954 | |
1146 | |
770 | |
447 | |
296 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.