FortiGate Version 3.0 MR4 Administration Guide
306 01-30004-0203-20070102
Config VPN SSL
Enable SSL VPN Select to enable SSL VPN connections.
Login Port Optionally enter a different HTTPS port number for
remote client web browsers to connect to the FortiGate
unit. The default port number is 10443.
Tunnel IP Range Specify the range of IP addresses reserved for tunnel-
mode SSL VPN clients. Type the starting and ending
address that defines the range of reserved IP
addresses.
Server Certificate Select the signed server certificate to use for
authentication purposes. If you leave the default setting
(Self-Signed), the FortiGate unit offers its factory
installed (self-signed) certificate from Fortinet to remote
clients when they connect.
Require Client Certificate If you want to enable the use of group certificates for
authenticating remote clients, select the option.
Afterward, when the remote client initiates a connection,
the FortiGate unit prompts the client for its client-side
certificate as part of the authentication process.
Encryption Key Algorithm Select the algorithm for creating a secure SSL
connection between the remote client web browser and
the FortiGate unit.
Default - RC4(128
bits) and higher
If the web browser on the remote client is capable of
matching a 128-bit or greater cipher suite, select this
option.
High - AES(128/256
bits) and 3DES
If the web browser on the remote client is capable of
matching a high level of SSL encryption, select this
option to enable cipher suites that use more than 128
bits to encrypt data.
Low - RC4(64 bits),
DES and higher
If you are not sure which level of SSL encryption the
remote client web browser supports, select this option to
enable a 64-bit or greater cipher suite.
Idle Timeout Type the period of time (in seconds) to control how long
the connection can remain idle before the system forces
the user to log in again. The range is from 10 to 28800
seconds. This setting applies to the SSL VPN session.
The interface does not time out when web application
sessions or tunnels are up.
Portal Message If you want to display a custom caption at the top of the
web portal home page, type the message.
Advanced (DNS and WINS Servers)
DNS Server #1
DNS Server #2
Enter up to two DNS Servers to be provided for the use
of clients.
WINS Server #1
WINS Server #2
Enter up to two WINS Servers to be provided for the use
of clients.
To Next Page
Loading...
Need help?
General