Route the internet traffic of SSL VPN client through gateway and apply the CFS policies
Description
How to route the internet traffic of SSL VPN client through the sonicwall gateway and apply the CFS policies?
Resolution for SonicOS 6.5
This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.
Step 1: Please enable the option of tunnel all mode under Manage > Connectivity > SSL VPN > Client Settings, then Client Route tab under Default Device Profile on the sonicwall.
Step 2: Please go to Manage > System Setup > Network > Zones and click on configure for the SSL VPN Zone.
Step 3: Enable the option Enable Client CF Services.
Note :Users connecting to the sonicwall from the SSL VPN client there internet connection will go through the sonicwall and according to their user credentials the CFS policy will be imposed users will be blocked/allowed as per the policy.
Resolution for SonicOS 6.2 and Below
The below resolution is for customers using SonicOS 6.2 and earlier firmware. For firewalls that are generation 6 and newer we suggest to upgrade to the latest general release of SonicOS 6.5 firmware.
Step 1: Please enable the option of tunnel all mode under SSL VPN ->client route settings on the sonicwall.
Step 2: Please go to Network -> Zones and click on configure for the SSL VPN Zone.
Step 3: Enable the option Enforce content filtering services and keep the CFS policy as “default”.
Note : Users connecting to the sonicwall from the SSL VPN client there internet connection will go through the sonicwall and according to their user credentials the CFS policy will be imposed users will be blocked/allowed as per the policy.