NETGEAR SRX5308 Router Manual PDF (Setup & Configuration Guide)

Page 296 / 469 Scroll up to view Page 291 - 295

Virtual Private Networking Using SSL

Connections

296

ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308

5.

Click

Apply

to save your settings. The policy is added to the List of SSL VPN Policies table

on the Policies screen. The new policy goes into effect immediately.

Note:

If you have configured SSL VPN user policies, make sure that

secure HTTP remote management is enabled (see

Configure

Remote Management Access

on page

338). If secure HTTP remote

management is not enabled, all SSL VPN user connections are

disabled.



To edit an SSL VPN policy:

1.

On the Policies screen (see

Figure

191

on page

292), click the

Edit

button in the Action

column for the SSL VPN policy that you want to modify. The Edit SSL VPN Policy

screen displays. This screen is identical to the Add SSL VPN Policy screen (see the

previous figure).

2.

Modify the settings as described in the previous table.

3.

Click

Apply

to save your settings.

Apply

Policy to?

(continued)

IP Network

(continued)

Service

From the drop-down list, select the service to which the SSL

VPN policy is applied:

•

VPN Tunnel

. The policy is applied only to a VPN tunnel.

•

Port Forwarding

. The policy is applied only to port

forwarding.

•

All

. The policy is applied both to a VPN tunnel and to port

forwarding.

Permission

From the drop-down list, select

Permit

or

Deny

to specify

whether the policy permits or denies access.

All

Addresses

Policy Name

A descriptive name of the SSL VPN policy for identification and

management purposes.

Port Range /

Port Number

A port (fill in the Begin field) or a range of ports (fill in the Begin

and End fields) to which the SSL VPN policy is applied. Ports

can be 0 through 65535. The policy is applied to all TCP and

UDP traffic that passes on those ports. Leave the fields blank to

apply the policy to all traffic.

Service

From the drop-down list, select the service to which the SSL

VPN policy is applied:

•

VPN Tunnel

. The policy is applied only to a VPN tunnel.

•

Port Forwarding

. The policy is applied only to port

forwarding.

•

All

. The policy is applied both to a VPN tunnel and to port

forwarding.

Permission

From the drop-down list, select

Permit

or

Deny

to specify

whether the policy permits or denies access.

Table 74.

Add SSL VPN Policy screen settings (continued)

Setting

Description

Page 297 / 469

Virtual Private Networking Using SSL

Connections

297

ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308



To delete one or more SSL VPN policies:

1.

On the Policies screen (see

Figure

191

on page

292), select the check box to the left of

each SSL VPN policy that you want to delete, or click the

Select All

table button to

select all policies.

2.

Click the

Delete

table button.

Access the New SSL Portal Login Screen

All screens that you can access from the SSL VPN menu of the web management interface

display a user portal link in the upper right of the screen, above the menu bars (

).

When you click the

User Portal

link, the SSL VPN default portal opens (see

Figure

197

on

page

298). This user portal is not the same as the new SSL portal login screen that you

defined in

Create the Portal Layout

on page

277.



To open the new SSL portal login screen:

1.

Select

VPN > SSL VPN > Portal Layouts

.

2.

Specify the IP version for which you want to open the SSL portal login screen:

•

IPv4

. In the upper right of the screen, the IPv4 radio button is already selected by

default. Go to

Step

3

.

Figure 194.

Portal Layouts screen for IPv4

•

IPv6

. Select the

IPv6

radio button. The Portal Layouts screen displays the IPv6

settings. (The following figure shows an additional layout in the List of Layouts table as an

example.)

Figure 195.

Portal Layouts screen for IPv6

Page 298 / 469

Virtual Private Networking Using SSL

Connections

298

ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308

3.

In the Portal URL field of the List of Layouts table, click the URL that corresponds to the SSL

portal login screen that you want to open. The SSL portal login screen displays. (The

following figure shows the CustSupport layout that was defined in

Create the Portal Layout

on page

277.)

Figure 196.

4.

Enter a user name and password that are associated with a domain, that, in turn, is

associated with the portal. For information about creating login credentials to access a portal,

see

Configure Domains, Groups, and Users

on page

281.

5.

Click

Login

. The User Portal screen displays. The format of the User Portal screen depends

on the settings that you selected on the Add Portal Layout screen (see

Create the Portal

Layout

on page

277):

•

Figure

197

shows the VPN Tunnel icon.

•

Figure

198

on page

299 show the Port Forwarding icon.

Figure 197.

Page 299 / 469

Virtual Private Networking Using SSL

Connections

299

ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308

Figure 198.

The User Portal screen displays a simple menu that, depending on the resources

allocated, provides the SSL user with the following menu selections:

•

VPN Tunnel

. Provides full network connectivity.

•

Port Forwarding

. Provides access to the network services that you defined as

described in

Configure Applications for Port Forwarding

on page

282.

•

Change Password

. Allows the user to change the password.

•

Support

. Provides access to the NETGEAR website.

Note:

The first time that a user attempts to connect through the VPN

tunnel, the NETGEAR SSL VPN tunnel adapter is installed; the first

time that a user attempts to connect through the port forwarding

tunnel, the NETGEAR port forwarding engine is installed.

View the SSL VPN Connection Status and SSL VPN Log



To view the status of current SSL VPN tunnels:

Select

VPN > Connection Status > SSL VPN Connection Status

.

The SSL VPN

Connection Status screen displays:

Page 300 / 469

Virtual Private Networking Using SSL

Connections

300

ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308

Figure 199.

The active user’s name, group, and IP address are listed in the table with a time stamp

indicating the time and date that the user connected.

To disconnect an active user, click the

Disconnect

table button to the right of the user’s table

entry.



To display the SSL VPN log:

Select

Monitoring > VPN Logs > SSL VPN Logs.

The SSL VPN Logs screen displays:

Figure 200.

Rate

Popular NETGEAR Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share