SSL VPN configuration

SSL VPNs use secure sockets layer (SSL) encryption to provide secure remote access. SSL VPNs allow authenticated users to establish secure connections to internal HTTP and HTTPS services through a standard web browser or through a client application that allows direct network access.

Access to HTTP-based services is provided by the SSL VPN Portal. The SSL VPN Portal is an integrated feature of Forcepoint NGFW. It provides remote access to applications and information in the protected network from standard web browsers. End users must authenticate to access the SSL VPN Portal webpage. You can configure single sign-on (SSO), to allow users to access different services under the same Domain without logging on to each service separately. The SSL VPN Portal proxies end-user connections to HTTP-based services in the protected network. The end user is never directly connected to the back-end services.

Encrypted connections to other services are provided by SSL VPN tunnels for the Stonesoft VPN Client solution. SSL VPN tunnels can be used with the Stonesoft VPN Client solution in mobile VPNs. You can use SSL VPN tunnels alone, IPsec tunnels alone, or both SSL VPN and IPsec tunnels together in the same policy-based VPN.