As shown in Figure 7-4, users access the internal Web server through the SSL VPN gateway.
The SSL VPN gateway functions as a proxy that forwards data between users and the internal
Web server. This function helps ensure that access to the internal Web server is secure.
The URL for the internal Web server must be specified so that users can access the Web server.
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
sslvpn gateway gateway-name
The virtual gateway view is displayed.
Step 3 Run:
service-type web-proxy resource resource-name
The Web proxy service is created and its view is displayed.
By default, the virtual gateway does not provide the Web proxy service.
Step 4 (Optional) Run:
description description
The description for the Web proxy service is configured.
Step 5 Run:
link url [ web-tunnel ]
A URL is configured for an internal Web server.
By default, an internal Web server does not have a URL.
NOTE
If the Web proxy function on the SSL VPN gateway is invalid, enable the tunnel mode; however, the tunnel
mode lowers security.
----End
7.5.4 Configuring the Port Forwarding Service
The port forwarding function allows applications to access internal servers using TCP.
Context
Figure 7-5 Port forwarding service network
Internet LAN
Application server
SSL VPN gateway
Remote terminal
Huawei AR1200 Series Enterprise Routers
Configuration Guide - VPN 7 SSL VPN Configuration
Issue 01 (2012-04-20) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
374
To Next Page
Loading...
Need help?
General
