![\"ssl1\"](\"https:\/\/blog.pmail.idv.tw\/wp-content\/uploads\/2012\/12\/ssl1.jpg\" "\\"ssl1\\"")
<\/a><\/p>\n<\/p>\n
\u5efa\u7acb\u6b65\u9a5f<\/p>\n
1. \u5efa\u7acb\u4f7f\u7528\u8005<\/strong><\/p>\n \u5728web console \uff0c \u4f7f\u7528\u8005\u8a8d\u8b49 \u5efa\u7acbsslvpn user<\/strong><\/p>\n 2.\u5efa\u7acbSSL vpn \u7fa4\u7d44<\/p>\n \u5c07\u4e0a\u500b\u6b65\u9a5f\u5efa\u7acb\u597d\u7684user \u52a0\u5165\u7fa4\u7d44<\/p>\n <\/p>\n 3. \u5efa\u7acb VPN \u7528\u6236 ip \u7bc4\u570d<\/strong><\/p>\n <\/strong> <\/p>\n 4.\u8a2d\u5b9avpn<\/p>\n \u9810\u8a2d\u6b64\u7248\u672c \u76f4\u63a5\u555f\u7528ssl vpn \u6240\u4ee5\u5728\u5716\u5f62\u4ecb\u9762\u4e0a\u770b\u4e0d\u5230enable ssl-vpn \u9078\u9805<\/p>\n \u5728 VPN —> SSL —> SSL \u8a2d\u5b9a<\/p>\n <\/p>\n 5.\u4f7f\u7528\u8005\u767b\u5165\u4ecb\u9762\u8a2d\u5b9a<\/p>\n \u56e0\u70ba\u6211\u4f7f\u7528ssl vpn \u76ee\u7684\u662f\u70ba\u4e86\u8b93\u5728\u5c0d\u5cb8\u7684\u670b\u53cb\u53ef\u4ee5\u9806\u5229\u7528\u6211\u9019\u4e00\u53f060B \u4e0a\u7db2<\/p>\n \u6240\u4ee5\u4f7f\u7528\u8005\u4ecb\u9762\u6211\u662f\u8a2d\u5b9a\u986f\u793a [Tunnel Mode]<\/p>\n \u4e14\u4e0d\u52fe\u9078 [\u5206\u96e2\u901a\u9053\u6a21\u5f0f] <\/p>\n <\/p>\n 6. \u8a2d\u5b9afirewall policy<\/p>\n WAN \u81f3 Internal <\/p>\n \u63a1\u53d6\u884c\u52d5\u7684\u9078\u9805\u52d9\u5fc5\u8981\u9078 SSL-VPN, \u7528\u6236\u7fa4\u7d44\u8981\u52a0\u5165\u525b\u525b\u65b0\u589e\u7684SSLVPN \u7fa4\u7d44)<\/p>\n Internal TO ssl.root \u5167\u7db2\u4e92\u901a<\/p>\n ssl.root TO Internal \u5167\u7db2\u4e92\u901a<\/p>\n<\/a><\/p>\n<\/a><\/p>\n<\/a><\/p>\n<\/a><\/strong><\/p>\n<\/a><\/p>\n<\/a><\/p>\n<\/a> <\/a><\/p>\n<\/a><\/p>\n