- It's secure tunnel connection by authentication & encrytion
- Type of VPN: IPSec & SSL
7.1 Configure IPSec VPN
- (Create VPN User)VPN-> User device-> create new -> user name : VPN1
- (Create VPN group) VPN->Group -> create New name - > group name : test -> add user VPN 1 to group test
- Create Policy to allow VPN user access to Internet
- Incoming Interface - Outgoing Interface : VPN -WAN មកពីក្រៅមកក្នុង Pre-share-key : password : Ex :12345
- Source Address -Destination Address : VPN IP Range - Internet
- Service: HTTP, HTTPS, DNS
- Configure IPSec VPN -> VPN->IPSec-wizard->name : IPSec VPN -> Temple Type: remoteAcess ->Fortigate VPN
- Configure VPN Client (FortiClient)
7.2 Configure SSL VPN
- Create VPN User & Group
- Configure SSL VPN:
-SSL VPN Portal
-Edit Full Access
-Disable Split Tunneling
-Source IP Pool
-Configure Bookmark to remote to local server
-SSL VPN Setting:
-Listen Interface: WAN
-Restrict Access : Allow access from any host
-Server Cerfiticate : Fortinet Factory
-Tunnel Mode Client Setting : SSL VPN IP Range
- Authentication/Portal Mapping: VPN User Group: Full Access
-Create Policy to allow VPN access to LAN
-Incoming interface - Outgoing Interface: VPN - LAN
-Source Address -Destination Address: VPN IP Range/Group: -LAN
-Service : ALL
-Create Policy to allow VPN access to Internet
-Incoming interface - outgoing interface: VPN _WAN
-Source Address : Destonation Address : VPN IP Range/Group -Internet
-Service: HTTP ,HTTPS,DNS
-Configure VPN Client
-Tunnel mode : Forticlient
-Web mode : https://203.1.2.3:10443 : Public IP
EmoticonEmoticon