Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
SecurityPlus
Contributor II

Security Rating - Interface Classification - SSL-VPN tunnel interface (ssl.root)

I'm working on a 60E FortiGate firewall that was recently upgraded to 6.0.2. When I run the Security Rating it says that all interfaces should be classified as LAN, WAN, or DMZ. We have an interface SSL-VPN tunnel interface (ssl.root) that is not classified. What classification should this interface have, LAN, WAN, or DMZ? How is this classification set?

3 REPLIES 3
SecurityPlus
Contributor II

Does anyone have a suggestion as to how to respond to the security ratings issue?
jim3cantos

SecurityPlus wrote:
Does anyone have a suggestion as to how to respond to the security ratings issue?
Did you find out how to classify SSL-VPN tunnel interface (ssl.root)?

José Ignacio Martín Jiménez
José Ignacio Martín Jiménez
jim3cantos

...further searching brought "WAN" as the "candidate" answer:

https://forum.fortinet.com/tm.aspx?m=158094

https://community.spiceworks.com/topic/2083065-fortigate-interface-role-for-ssl-vpn-tunnel-interface

 

José Ignacio Martín Jiménez
José Ignacio Martín Jiménez
Top Kudoed Authors