Configure SSL Client to Site VPN on Fortigate V5.2 Firewall
This article guides you through configuring the above VPN SSL client to gateway fortigate V5.2.
The model is implemented as follows:
Step 1 : Go to VPN–> SSL–>portals–>Create new and follow the image below:
In the Predefined Bookmarks section, click create new and fill in like the image below. Host here is the address in Lan that I want to connect to.
Step 2: Create a user to allow VPN connections and add to the group
Go to the User & Device section to create a user and add it to the group
Step 3: Create an internal VPN connection IP address
Go to Policy & Objects -> Objects -> address, here I set it as 192.168.101.10-254. You can see the picture below:
Step 4: Go to SSL–>VPN Settings to configure the interface connecting to the port
Here, the Listen on port default port is 443, so it will be the same port as the port you connect to. fortigate. To solve this problem, 1 is to change the log port to fortigate, 2 is to change the port to run the VPN. Here, I let the VPN run on port 444.
Step 5: In the Authentication/Portal Mapping section, click Create new –>Select the group and portal that you created in the steps above.
Create as shown below
Step 6: Create a policy to allow VPN connections.
Step 7: Access the wan address to test the VPN connection and download forticlient software
Enter User name and password to connect.
Download forticlient for the device you want to connect to VPN
Step 8: Install forticlient and create a VPN connection.
Check the connection IP and test inside to get the file
Test download file to:
Access inside successfully. Thus, the above SSL VPN configuration process has been completed Fortigate Firewall.
Good luck.
Xem tiếp...
