ZyXEL Communications UAG Series - 38.2.1 Address Object Commands; 38.2.2 Address Group Commands

ZyXEL Communications UAG Series

361 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Chapter 41 SSL VPN

UAG CLI Reference Guide

208

1 First of all, configure 10.1.1.254/24 for the IP address of interface wan1 which is an external

interface for public SSL VPN to access. Configure 172.16.10.254/24 for the IP address of interface

lan2 which is an internal network.

2 Create four address objects for the SSL VPN DHCP pool, DNS servers and the local network for SSL

VPN authenticated users to access.

3 Create an endpoint security profile named EPS-1. SSL VPN users’ computers must install Windows

XP and TrendMicro PC-Cillin Internet Security 2007. Besides, the PC-Cillin anti-virus must be

activated.

4 Create the SSL VPN user account named tester with password 1234.

5 Create an SSL VPN rule named SSL_VPN_TEST. Enable it and apply objects you just created.

Router(config)# interface wan1

Router(config-if-ge)# ip address 10.1.1.254 255.255.255.0

Router(config-if-ge)# exit

Router(config)# interface lan2

Router(config-if-ge)# ip address 172.16.10.254 255.255.255.0

Router(config-if-ge)# exit

Router(config)# address-object IP-POOL 192.168.100.1-192.168.100.10

Router(config)# address-object DNS1 172.16.5.1

Router(config)# address-object DNS2 172.16.5.2

Router(config)# address-object NETWORK1 172.16.10.0/24

Router(config)# eps profile EPS-1

Router(eps EPS-1)# matching-criteria all

Router(eps EPS-1)# os-type windows

Router(eps EPS-1)# windows-version windows-xp

Router(eps EPS-1)# anti-virus activate

Router(eps EPS-1)# anti-virus TrendMicro_PC-Cillin_Internet_Security_2007 detect-

auto-protection enable

Router(eps EPS-1)# exit

Router(config)# username tester password 1234 user-type user

Router(config)# sslvpn policy SSL_VPN_TEST

Router(policy SSL_VPN_TEST)# activate

Router(policy SSL_VPN_TEST)# user tester

Router(policy SSL_VPN_TEST)# network-extension activate

Router(policy SSL_VPN_TEST)# network-extension ip-pool IP-POOL

Router(policy SSL_VPN_TEST)# network-extension 1st-dns DNS1

Router(policy SSL_VPN_TEST)# network-extension 2nd-dns DNS2

Router(policy SSL_VPN_TEST)# network-extension network NETWORK1

Router(policy SSL_VPN_TEST)# eps activate

Router(policy SSL_VPN_TEST)# eps 1 EPS-1

Router(policy SSL_VPN_TEST)# exit

Table of Contents

Other manuals for ZyXEL Communications UAG Series

User Guide323 pages

Cli Reference Guide282 pages

Quick Start Guide2 pages

Related product manuals

Preview: ZyXEL Communications UAG4100

ZyXEL Communications UAG4100

Preview: ZyXEL Communications UAG2100

ZyXEL Communications UAG2100

Preview: ZyXEL Communications UAG5100

ZyXEL Communications UAG5100

Preview: ZYWALL USG 20

Preview: ZyWALL USG 50

Preview: ZYWALL USG CLI

Preview: ZyWall USG20-VPN

ZyWall USG20-VPN

Preview: ZyWALL USG100-Plus

ZyWALL USG100-Plus

Preview: ZyWALL USG 100 Series

ZyWALL USG 100 Series

Preview: USG-100@USG-200 - V2.20 ED 2

USG-100@USG-200 - V2.20 ED 2