Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
VPN SSL WEB FILTER AND APP CONTROL
1- I have an SSL VPN and I need that when users connect from home, the internet output must be done through the company's Wan links.
2- I need to apply the Web filter and the application control in this SSL VPN rule
can anyone help?
#VPNSSL
Labels:
- Labels:
-
FortiGate
3 REPLIES 3
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
This is a fairly basic scenario. Here's a KB for full-tunnel SSL-VPN - https://docs.fortinet.com/document/fortigate/7.0.9/administration-guide/559546/ssl-vpn-full-tunnel-f....
The key elements are:
- Ensure that the portal assigned to users has split tunneling disabled
- Ensure that you have an <sslvpn interface> => "wan" firewall policy and enable any relevant UTM inspection profiles in it.
[ corrections always welcome ]
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Just a note - you forgot to enable the NAT on the rule.
Yuri Slobodyanyuk
Yuri Slobodyanyuk
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Good point!
This was originally a screenshot of a VPN policy directed into the local LAN, with the outgoing interface covered by a new text, where SNAT wouldn't be needed, and I forgot to update that part.
[ corrections always welcome ]