ZyWALL USG Series User’s Guide
641
CHAPTER 31
SSL VPN
31.1 Overview
Use SSL VPN to allow users to use a web browser for secure remote user login. The remote users do not
need a VPN router or VPN client software.
31.1.1 What You Can Do in this Chapter
• Use the VPN > SSL VPN > Access Privilege screens (see Section 31.2 on page 642) to configure SSL
access policies.
• Use the Click VPN > SSL VPN > Global Setting screen (see Section 31.3 on page 646) to set the IP
address of the Zyxel Device (or a gateway device) on your network for full tunnel mode access, enter
access messages or upload a custom logo to be displayed on the remote user screen.
• Use the VPN > SSL VPN > SecuExtender screen (see Section 31.4 on page 648) to update and check
the current and latest version of the Security Extender.
31.1.2 What You Need to Know
Full Tunnel Mode
In full tunnel mode, a virtual connection is created for remote users with private IP addresses in the same
subnet as the local network. This allows them to access network resources in the same way as if they
were part of the internal network.
Figure 445 Network Access Mode: Full Tunnel Mode
SSL Access Policy
An SSL access policy allows the Zyxel Device to perform the following tasks:
• limit user access to specific applications or file sharing server on the network.
• allow user access to specific networks.
• assign private IP addresses and provide DNS/WINS server information to remote users to access
internal networks.
Web Mail File Share
Web-based Application
https://
Application Server
Non-Web
LAN (192.168.1.X)
192.168.1.100
To Next Page
Loading...
