Blocking External Access to the Administration Portal

5In a Web browser, type the address of the Firebox SSL VPN Gateway using either the IP address or fully qualified domain name (FQDN) to connect to either the internal or external interface. The format should be either https://ipaddress or https://FQDN.

6Type the logon credentials. The WatchGuard Firebox SSL VPN Gateway portal page appears.

7Click My own computer and then click Connect.

The Secure Access Client connection icon appears in the notification area, indicating a successful connection.

The initial configuration is complete. After completing the initial configuration, you can configure acces- sible networks so you can connect to all of your network resources, such as email, Web servers, and file shares as if you are in the office. To test your configuration, try connecting to the applications and resources that are available from the corporate network.

Blocking External Access to the Administration Portal

By default, if the Firebox SSL VPN Gateway is configured to use both network adapters, the external adapter can be used to access the Administration Portal from outside the firewall. To block access to the Administration Portal from the external adapter, clear the check box for this option.

To block external access to the Administration Portal

1Click the VPN Gateway Cluster tab.

2On the Administration tab, clear the check box for Enable External Administration.

3 Click Apply Change.

Using Portal Pages

The Firebox SSL VPN Gateway provides logon access using five portal pages. The portal page users see depends on the configuration of the Firebox SSL VPN Gateway. These include:

Using the default portal page that provides full Secure Access Client and kiosk mode options. The default portal page is the only one that can be customized with your company name and logo.

Redirecting the user to the Web Interface logon page.

Providing a portal page that allows users the choice of logging on using Secure Access Client, the Web Interface, or kiosk mode.

Pre-authentication Web page that appears when a pre-authentication policy is configured on the Firebox SSL VPN Gateway.

Redirection to a Web page when double-source authentication is configured on the Firebox SSL VPN Gateway and the user logs on using Web access.

Using the Default Portal Page

Note

You can also include links to the Secure Access Client and kiosk mode on your Web site, as described in “Linking to Clients from Your Web Site” on page 41.

38

Firebox SSL VPN Gateway

Page 47 Page 49
Page 48
Image 48
WatchGuard Technologies SSL VPN manual Blocking External Access to the Administration Portal, Using Portal Pages
Page 47 Page 49

SSL VPN specifications

WatchGuard Technologies offers a robust SSL VPN solution designed for secure remote access to corporate networks. As businesses increasingly rely on a remote workforce, the need for secure and reliable connectivity has never been more critical. WatchGuard's SSL VPN features advanced security technologies that ensure data integrity and confidentiality while enabling seamless access to applications and resources.

One of the standout features of WatchGuard's SSL VPN is its user-friendly interface. The solution is designed to simplify the user experience, enabling employees to connect to the VPN with minimal complexity. With a straightforward setup process, users can quickly establish secure connections from various devices, including laptops, smartphones, and tablets. This flexibility supports a diverse workforce, allowing employees to work from different locations without compromising security.

In addition to its ease of use, WatchGuard's SSL VPN is built on robust security technologies. It employs end-to-end encryption to safeguard data in transit, ensuring that only authorized users can access sensitive information. By utilizing SSL (Secure Sockets Layer) protocols, the VPN creates a secure tunnel between the user’s device and the corporate network, protecting against potential threats such as eavesdropping or man-in-the-middle attacks.

Moreover, WatchGuard Technologies includes multiple authentication options, adding another layer of security. The solution supports multi-factor authentication (MFA), requiring users to provide additional verification beyond just a password. This could involve mobile device verification or biometric authentication, significantly reducing the risk of unauthorized access.

Another key characteristic of WatchGuard’s SSL VPN is its integration with other WatchGuard security solutions. Businesses can benefit from a comprehensive security posture by leveraging firewalls and intrusion prevention systems along with the SSL VPN. This holistic approach ensures that remote connections are continually monitored and secured against evolving cyber threats.

Scalability is also a crucial aspect of WatchGuard's SSL VPN, accommodating growing organizations with changing needs. The solution can easily scale to support an increasing number of remote users without compromising performance. With robust performance metrics, businesses can ensure that even during peak usage times, the VPN remains responsive and reliable.

In summary, WatchGuard Technologies' SSL VPN solution combines ease of use, robust security, flexible authentication, and scalability. These features make it an ideal choice for organizations seeking to provide secure remote access to their employees while maintaining a strong defense against cyber threats. With WatchGuard, businesses can confidently navigate the challenges of a digital landscape, ensuring their network remains secure as they embrace remote work.
Top Page Image Contents