Kerio-tech Firewall6 Bedienungsanleitung PDF herunterladen (Seite 364)

100

101

Chapter 24 Kerio Clientless SSL-VPN

364

Click Advanced to open a dialog where port and SSL certiﬁcate for SSL-VPN can be set.

Figure 24.2 Setting of TCP port and SSL certiﬁcate for SSL-VPN

SSL-VPN’s default port is port 443 (standard port of the HTTPS service).

Click Change SSL Certiﬁcate to create a new certiﬁcate for the SSL-VPN service or to import

a certiﬁcate issued by a trustworthy certiﬁcation authority. When created, the certiﬁcate is

saved as sslvpn.crt and the corresponding private key as sslvpn.key. The process of cre-

ating/importing a certiﬁcate is identical as the one for WinRoute’s interface or the VPN server,

addressed in detail in chapter 11.1.

Hint

Certiﬁcates for particular server name issued by a trustworthy certiﬁcation authority can also

be used for the Web interface and the VPN server — it is not necessary to use three diﬀerent

certiﬁcates.

Allowing access from the Internet

Access to the SSL-VPN interface from the Internet must be allowed by deﬁning a traﬃc rule

allowing connection to the ﬁrewall’s HTTPS service. For details, see chapter 7.4.

Figure 24.3 Traﬃc rule allowing connection to the SSL-VPN interface

Note: If the port for SSL-VPN interface is changed, it is also necessary to modify the Service

item in this rule!

1 2 ... 359 360 361 362 363 364 365 366 367 368 369 ... 403 404

Kommentare zu diesen Handbüchern

Keine Kommentare

Kerio-tech Firewall6 Bedienungsanleitung Seite 364

Kommentare zu diesen Handbüchern