SSL VPN client app connected to Firewall
|
Edited by Clint Thebus at 2024-11-11 19:22 Good Day, I have a Z3200-S firewall that is running in transparent mode on the network. I have SSL VPN client working fine via the App. My question is, if i have URL blocking and website blocking enabled on the firewall and specific policy rules, does these rules and policies not apply for the remote VPN user? I have tested and it does not follow any URL blocking. eg. the below policy rules like blocked websites etc.  |
|
Hello, Can you enable this SSL Proxy Policy and test it again ?  If you still have issue pls talk with me again. I would be glad to help you in Community. Best regards, Micca |
GTAC-Micca replied at 2024-11-11 21:23 Hi GTAC-Micca, I have enabled the SSL Proxy policy and still i can go to any of the websites that i have in the blocked URL filtering. Also i noticed that i can ping any of the local IP addresses on the router and can only get to the router ip address remotely 192.168.110.1, but i cant get to a printer. I can ping the printer. I cant also get to the firewall via its local IP address.  The SSL Policy Src (ippool_VPN) is the ip pool that i get from the SSL VPN  |
Clint Thebus replied at 2024-11-12 22:45 OK, I can now get to all the devices on the local network. I needed to create a Nat Rule for the SSL VPN. My new question is, How do i get the remote user to display the same public IP address as the Office and not his personal ISP public IP? |
Clint Thebus replied at 2024-11-14 14:28 Hello, I'm sorry that based on the current information, I can't provide detailed troubleshooting steps for the time being. We need more information from you. Can you show me a screenshot of the specific location of the requirements you mentioned? Best regards, Micca |
GTAC-Micca replied at 2024-11-15 09:51 Hi Micca, I managed to get everything working. When creating the SSL Gateway, i changed it from Split tunnel to Full tunnel. Then i has to create a static route on the Router for the SSLVPN's IP address range and using the Firewall's IP address as the next hop. Then create another static route on the firewall with the router as the next hop. This fixed the issue. Now i display the public IP from the firewall and im blocked as per the policies on the firewall. Thank you for your help. |
Clint Thebus replied at 2024-11-15 12:54 Hi Clint Thebus, Thanks for your kind reply! I am glad to be of assistance. If you encounter any problems, please don’t hesitate to contact us! Best regards, Steve |
GTAC-Steve replied at 2024-11-15 12:58 Thanks Steve |
This site contains user submitted content, comments and opinions and is for informational purposes only. Ruijie may provide or recommend responses as a possible solution based on the information provided; every potential issue may involve several factors not detailed in the conversations captured in an electronic forum and Ruijie can therefore provide no guarantee as to the efficacy of any proposed solutions on the community forums. Ruijie disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the Ruijie Community Terms of Use.
More ways to get help: Visit Support Videos, call us via Service Hotline, Facebook or Live Chat.
©2000-2023 Ruijie Networks Co,Ltd
Level 1
