Creating security policies
Create an SSL VPN security policy with SSL VPN user authentication to allow SSL VPN traffic to enter the FortiGate unit. Create a normal security policy from ssl.root to wan1 to allow SSL VPN traffic to connect to the Internet.
1. Go to Policy & Objects > Policy > IPv4 and select Create New.
2. Add an SSL VPN security policy as below, and click OK.
Incoming Interface | wan1 |
Source Address | all |
Outgoing Interface | ssl.root |
3. Select Create New to add a security policy that allows remote SSL VPN users to connect to the Internet:
Incoming Interface | ssl.root |
Source Address | all |
Outgoing Interface | wan1 |
Destination Address | all |
Schedule | always |
Service | ALL |
Action | ACCEPT |
4. Select OK.