145
103 x 29 pixels to avoid distortion when displayed. The USG automatically resizes a graphic of a
different resolution to 103 x 29 pixels. The file size must be 100 kilobytes or less.
Transparent background is recommended.
• If users can log into the SSL VPN but cannot see some of the resource links check the SSL
application object’s configuration.
• If the user account is not included in an SSL VPN access policy, the USG redirects the user to the
user aware screen.
• Operating system and browser requirements for the remote user’s computer:
• Windows 7 (32 or 64-bit), Vista (32 or 64-bit), 2003 (32-bit), XP (32-bit), or 2000 (32-bit)
• Internet Explorer 7 and above or Firefox 1.5 and above
• Using RDP requires Internet Explorer
• Sun’s Runtime Environment (JRE) version 1.6 or later installed and enabled.
• Changing the HTTP/HTTPS configuration disconnects SSL VPN network extension sessions. Users
need to re-connect if this happens.
3.6 L2TP VPN with Android, iOS, and Windows
L2TP VPN uses the L2TP and IPSec client software included in remote users’ Android, iOS, or
Windows operating systems for secure connections to the network behind the USG.
1 L2TP VPN uses one of the USG’s IPSec VPN connections. Edit Default_L2TP_VPN_GW as
follows:
• Set My Address to the WAN interface domain name or IP address you want to use.
• Replace the default Pre-Shared Key.
2 Create a host-type address object containing the My Address IP address configured in the
Default_L2TP_VPN_GW and set the Default_L2TP_VPN_Connection’s Local Policy to use it.
3 In Configuration > VPN > L2TP VPN enable the connection and set the VPN connection L2TP
VPN uses, the L2TP client IP address pool, the authentication method, and the allowed users.
4 Configure a policy route to let remote users access resources on the network behind the USG.
• Set the policy route’s Source Address to the address object that you want to allow the remote
users to access (LAN1_SUBNET in the following example).
• Set the Destination Address to the IP address pool that the USG assigns to the remote users
(L2TP_POOL in the following example).
• Set the next hop to be the VPN tunnel you are using for L2TP.
3.6.1 L2TP VPN Example
Here a sales representative uses a laptop to securely connect to the USG’s network.
Figure 34 L2TP VPN Example
To Next Page
Loading...
