Configuration Guide How to Configure SSL VPN Features in DSR Series Overview This document describes how to configure D-Link DSR-500N to enable SSL VPN feature. An SSL VPN is a form of VPN that can be used with a standard Web browser. SSL VPN doesn’t require the installation of specialized client software on end users’ computers, and is ideal for applications including file sharing, remote backup and remote system management.
How to Configure SSL VPN Features in DSR Series Situation note In this scenario, all application servers of headquarter are located in 192.168.10.0/24 subnet. We are going to configure DSR router which allows remote PCs to access application servers via this SSL VPN tunnel. This tunnel doesn’t handle local Internet traffic of PCs in order to reduce traffic overhead for the tunnel. Roaming User DSR-1000N Internet WAN LAN 192.168.10.1 Firmware version 1.03B12 WW Configuration Step 1. Before SSL configuration, please enable remote management feature via Tools - Admin - Remote Management. Make sure the Enable Remote Management option is enabled and keep the Port Number in 443. 2
How to Configure SSL VPN Features in DSR Series 2. Go to SETUP - VPN Settings - SSL VPN server - Portal Layouts 3
How to Configure SSL VPN Features in DSR Series Follow below parameter to add a portal layout. Portal Layout Name: test Portal Site Title (optional): test Banner Title (optional): test Display banner message on login page: Enabled HTTP meta tags for cache control (recommended): Enabled ActiveX Web cache cleaner: Enabled VPN tunnel page: Enabled Port Forwarding: Enabled 4
How to Configure SSL VPN Features in DSR Series The GUI page will look like above screenshot when you finish to add a portal layout. 3. Go to ADVANCED - Users - Domains, create a new Domain for SSL VPN users. 5
How to Configure SSL VPN Features in DSR Series Follow below parameters on Domains Configuration page. Domain name: test, select portal: test The GUI page will look like above screenshot when you finish to add a new domain. 6
How to Configure SSL VPN Features in DSR Series 4. Go to ADVANCED - Users - Users, add a new user account for SSL VPN connection belong to the test domain. Follow below parameters on Users Configuration page: User Name: test1 First Name: test1 Last Name: test1 User Type: SSL VPN user Password: Here please input a password Confirm Password: Here please input a same password again Idle Timeout: 30 Minutes 7
How to Configure SSL VPN Features in DSR Series The GUI page will look like above screenshot when you finish to add a new user belong to test domain. 5. Go to SETUP - VPN Settings - SSL VPN Client - SSL VPN Client, in this page, administrator is able to configure what IP address range, DNS information will be dispensed to SSL VPN clients . 8
How to Configure SSL VPN Features in DSR Series Follow below parameters to configure on SSL VPN Client page: Enable Split Tunnel Support: Enabled Client Address Range Begin: 192.168.251.1 Client Address Range end: 192.168.251.254 LCP Timeout: 60 Minutes 6. Go to SETUP - VPN Settings - SSL VPN Client - Configured Client Routes to add a static route, since we enabled the feature of “Split Tunnel Support” at previous step. Therefore, administrator is able to manually alter the routing entries for each SSL user. 9
How to Configure SSL VPN Features in DSR Series 10 Note: DSR router would not allow you to add Client Routes if you didn’t enable the Split Tunnel Support at previous step. Following parameters are routing information of remote network for SSL VPN client. Destination Network: 192.168.10.0 Subnet Mask: 255.255.255.0
How to Configure SSL VPN Features in DSR Series 7. Go to SETUP - VPN Settings - SSL VPN Server - SSL VPN Policies, create a policy that allow the SSL VPN users to access remote network. Add a SSL VPN policy and follow below parameters on SSL VPN Policy Configuration Page. Policy For: Global Apply Policy to: All Addresses Policy Name: Allow all address Begin: 0 End: 65535 Service: All Permission: Permit 11
How to Configure SSL VPN Features in DSR Series When you click save settings, a SSL VPN policy has been created like following screenshot. 8. Now, you have finished all settings in DSR routers. When you successfully connect to DSR router via SSL VPN \ tunnel, You can check that there will be two default gateway in your client PC. For Internet traffic, it will be routed to 172.17.5.254. For company network traffic, it will be routed to 192.168.251.1. 12
How to Configure SSL VPN Features in DSR Series 13
Visit our website for more information www.dlink.com D-Link, D-Link logo, D-Link sub brand logos and D-Link product trademarks are trademarks or registered trademarks of D-Link Corporation and its subsidiaries. All other third party marks mentioned herein are trademarks of the respective owners. Copyright 2011 D-Link Corporation. All Rights Reserved.
Go to SETUP - VPN Settings - SSL VPN Server - SSL VPN Policies, create a policy that allow the SSL VPN users to access remote network. Add a SSL VPN policy and follow below parameters on SSL VPN Policy Configuration Page. Policy For: Global Apply Policy to: All Addresses Policy Name: Allow_all_address Begin: 0 End: 65535 Service: All .
SSL VPN Client for Windows/Mac OS ZyWALL 110 VPN Firewall ZyWALL 1100 VPN Firewall USG20W-VPN VPN Firewall ZyWALL 310 VPN Firewall. Datasheet ZyWALL 110/310/1100 and USG20(W)-VPN 5 Model ZyWALL 110 ZyWALL 310 ZyWALL 1100 USG20-VPN USG20W-VPN Prod
7. SSL VPN requires DUO 2FA. In this illustration, DUO Push is used. Tap Login request Approved to complete the profile setup. The setup is now completed and a SSL VPN connection is made too. D. Connect to CUHK SSL VPN 1. Open ArubaVIA , VPN DISCONNECTED will then be prompted. Click to Connect to establish a SSL VPN connection
IPsec VPN Throughput (512 byte) 1 98 Gbps Gateway-to-Gateway IPsec VPN Tunnels 20,000 Client-to-Gateway IPsec VPN Tunnels 100,000 SSL-VPN Throughput 10 Gbps Concurrent SSL-VPN Users (Recommended Maximum, Tunnel Mode) 30,000 SSL Inspection Throughput (IPS, avg. HTTPS) 3 17 Gbps SSL Inspection CPS (IPS, avg. HTTPS) 3 9,500 SSL Inspection .
The information in this document applies both to IPsec VPNs and SSL VPNs unless otherwise noted. The encrypted tunnels for SSL VPNs use TCP port 443, which is usually allowed by intermediate firewalls by default. SSL VPN tunnels and the SSL VPN Portal are different remote access methods. You access SSL VPN tunnels using the Stonesoft VPN .
VPN Passthrough: having the device installed as an intermediate part of a secure VPN, requires additional VPN gateway. Remote User VPN Site-to-Site VPN Termination PPTP Termination ( refer to page 15) Peplink Site-to-Site VPN ( refer to page 10) . t Requirement System Requirement for Site-to-Site VPN Configuration When configuring a VPN .
Chapter 15 IPsec VPN 423 Chapter 16 Dynamic Multipoint VPN (DMVPN) 469 Chapter 17 Group Encrypted Transport VPN (GET VPN) 503 Chapter 18 Secure Sockets Layer VPN (SSL VPN) 521 Chapter 19 Multiprotocol Label Switching VPN (MPLS VPN) 533 Part IV Security Monitoring 559 Chapter 20 Network Intrusion Prevention 561 Chapter 21 Host Intrusion .
Global Management System SSL VPN About SSL VPN 7 3 Click the Groups view. 4 In the User Groups column, select SSLVPN Services. 5 Click the Right Arrow to move it to the Member Of column. 6 Click the VPN Access view. The VPN Access view configures which network resources VPN users (GVC, NetExtender, or Virtual Office bookmarks) can access.
Coronavirus (COVID-19) risk assessment 11 Hazard Risk rating Control measures Additional controls Residual risk Persons at risk Non-essential contractors were stood down (where the service was not required at this time) to reduce possible transmission of the virus. All contractors that are providing a service are contacted on a daily basis to ensure they adhere to hygiene requirements .