Chapter 34 SSL VPN
ZyWALL Series CLI Reference Guide
296
The following sections list the SSL VPN commands.
34.2.1 SSL VPN Commands
This table lists the commands for SSL VPN. You must use the configure terminal command to enter
the configuration mode before you can use these commands.
Table 158 SSL VPN Commands
COMMAND DESCRIPTION
sslvpn login message
<description>
Sets the login message that users see after logging into the Zyxel
Device using SSL VPN.
sslvpn login-port <1..65535>
Sets the SSL VPN server port of the Zyxel Device for full tunnel mode SLL
VPN access.
Leave this field to default settings unless it conflicts with another
interface.
no sslvpn login-port
Resets the SSL VPN server port of the Zyxel Device back to its default
setting,
show sslvpn login-port
Displays the SSL VPN server port of the Zyxel Device.
sslvpn logout message
<description>
Sets the login message that users see after logging out of the Zyxel
Device using SSL VPN.
show sslvpn policy
[profile_name]
Displays the settings of the specified SSL VPN access policy.
show ssl-vpn network-extension
local-ip
Displays the IP address that-t the Zyxel Device uses in setting up the
SSL VPN.
show sslvpn monitor
Displays a list of the users who are currently logged into the VPN SSL
client portal.
sslvpn network-extension local-
ip ip
Sets the IP address that the Zyxel Device uses in setting up the SSL VPN.
sslvpn policy {profile_name |
profile_name append |
profile_name insert <1..16>}
Enters the SSL VPN sub-command mode to add or edit an SSL VPN
access policy.
[no] activate
Turns the SSL VPN access policy on or off.
[no] application
application_object
Adds the SSL application object to the SSL VPN access policy.
[no] description
description
Adds information about the SSL VPN access policy. Use up to 60
characters (“0-9”, “a-z”, “A-Z-”, “-” and “_”).
[no] network-extension
{activate | ip-
address_object | 1st-dns
{address_object | ip } |
2nd-dns {address_object |
ip } | 1st-wins
{address_object | ip } |
2nd-wins {address_object |
ip } | network
address_object}
Use this to configure for a VPN tunnel between the authenticated
users and the internal network. This allows the users to access the
resources on the network as if they were on the same local network.
ip-: specify the name of the IP addresses to assign to the user
computers for the VPN connection.
1st/2nd-dns/sins: specify the name of the DNS or WINS servers to
assign to the remote users. This allows them to access devices on the
local network using domain names instead of IP addresses.
network: specify a network users can access.
[no] network-extension
traffic-enforcement
Forces all SSL VPN client traffic to be sent through the SSL VPN tunnel.
The no command disables this setting.
[no] network-extension
netbios-broadcast
Allows netbios broadcast packets to pass through the SSL VPN tunnel.
To Next Page
Loading...
