Fortigate guide for Begineer - 8



I'd like to show how to create and setup SSL VPN in Fortigate now.
Below picture is the Configuration Setting that I'd like to use for SSL VPN.



Before you begin, you need to make sure SSL VPN is
enabled using the CLI command:


config vpn ssl settings
set sslvpn-enable enable
end


Create a firewall address for the email server.
1) To add the email server address, go to Firewall Objects > Address > Address, select
Create New and enter the email server address:


Address Name
Email Server
Type
Subnet / IP Range
Subnet / IP Range
192.168.1.12
Interface
Internal



2) Select OK.
Create the SSL VPN portal and a bookmark for the email server that the user connects to after logging in.
1) Go to VPN > SSL > Config and for IP Pools select Edit and add Test VPN to the Selected table.
2) Go to VPN > SSL > Portal and select Create New to create the portal:


Name
Internal_company_sites_portal
Applications
HTTP/HTTPS
Portal Message
Internal Company Sites



3) Select OK to close the Edit Settings window.
4) On the default web portal delete the Bookmarks widget by selecting its Remove icon.
5) On the Add Widget on the right of the default portal select Bookmarks.
6) In the new Bookmarks widget select the Edit icon (looks like a pencil).
7) Optionally edit the Name and make sure Applications is set to HTTP/HTTPS.
8) Select OK in the Bookmarks widget.
9) In the Bookmarks widget select Add and create a bookmark to link the email server web page:


Name
Email
Type
HTTP/HTTPS
Location
Description
Corporate email system



10) Select OK at the bottom of the Bookmarks widget.
11) Select Apply at the top of web portal page to save the web portal configuration.

Create the SSL VPN user and add the user to a user group configured for SSL VPN use.
1) Go to User > User > User and select Create New to add the user:


User Name
Test VPN
Password
password


2) Go to User > User Group > User Group and select Create New to add Test VPN to the SSL VPN user group:.

Name
Sales
Type
Firewall
Allow SSL-VPN Access
Internal Company Sites



3 Move Test VPN to the Members list.
4 Select OK.

Create an SSL VPN security policy with SSL VPN user authentication.
1) Go to Policy > Policy > Policy and select Create New to add the SSL VPN security policy:



Source Interface/Zone
WAN1
Source Address
All
Destination Interface/Zone
Internal
Destination Address
Email
Action
SSL-VPN



2) Select Configure SSL-VPN Users and select Add to add an authentication rule for remote SSL VPN users:


Selected User Groups
Sales
Selected Services
HTTP
HTTPS
Destination Interface/Zone
Internal


3) Select OK.


SSL VPN Connection, User Account creation, configuration and setup done.
But take note the above steps are may be vary depends on Fortigate Unit Mode.


May you be all happy.
(Be knowledgeable, pass it on then)

2 comments

I have read your blog its very attractive and impressive. I like it your blog.
corporate training companies in india corporate training companies in india corporate training in chennai corporate training in chennai | corporate training institutes in chennai corporate training companies in chennai corporate training companies in chennai Angular 2 Corporate Training Angular 2 Corporate Training

Reply

Corporate Training Companies in India Corporate Training Companies in India Corporate Training in Chennai Corporate Training in Chennai Corporate Training Companies in India Corporate Training Companies in India Java Corporate Training Companies in India Java Corporate Training Companies in India Java Corporate Training Companies in Chennai

Reply

Post a Comment