• Specify a suitable name, in this example my_sslvpn_if
• Inner IP: sslvpn_inner_ip
• Outer Interface: If2
• Server IP: sslvpn_server_ip
• IP Pool: sslvpn_pool
3. Click the tab Add Route
4. Select the If3 interface in the Available list and press the ">>" button to move it into the
Selected list
5. Click OK
2. Create an Authentication Rule
Command-Line Interface
gw-world:/> add UserAuthRule
Interface=my_sslvpn_if
AuthSource=Local
LocalUserDB=lannet_auth_users
OriginatorIP=all-nets
Agent=PPP
TerminatorIP=sslvpn_server_ip
Name=ssl_login
Web Interface
1. Go to: Policies > User Authentication User Authentication Rules > Add > User
Authentication Rule
2. Now enter:
• Name: ssl_login
• Agent: L2TP/PPTP/SSL VPN
• Authentication Source: Local
• Interface: my_sslvpn_if
• Originator IP: all-nets (a more specific range is more secure)
• Terminator IP: sslvpn_server_ip
3. For Local User DB choose lannet_auth_users.
4. For Login Type choose HTMLForm
5. Click OK
The new NetDefendOS configuration should now be deployed.
For external client connection, a web browser should be directed to the IP address my_sslvpn_if.
This is done either by typing the actual IP address or using a URL that can resolve to the IP
Chapter 9: VPN
760
To Next Page
Loading...
