Configuring the SSL VPN Client
4-8 SSL VPN User’s Guide
2. Right-click the icon and select Login from the short-cut menu. The Citrix
Access Gateway Enterprise Edition dialog box is displayed as shown in
Figure 4-6.
3. Right-click
Right-click for advanced options and select Show Secondary
Password
from the short-cut menu. An additional password field is added
as shown in the following figure.
Figure 4-7 Secondary password field
4.2 Configuring Interception Settings
As mentioned in the first chapter, when a TCP or a UDP application, like Telnet
or Microsoft Outlook, connects to a server in remote network, the client inter-
cepts the connection, secures it using SSL encryption, and redirects it to the
server through the secure SSL VPN tunnel. However, you might need to
change these settings. For instance, if you need to visit a Web site on the
Internet, you do not need to access resources on the remote intranet. Instead,
requests from your Web browser need to be diverted directly to the Internet.
To do this, you need to enable Split Tunneling. This feature allows the client to
divert requests, not meant for the remote network, to another appropriate
network. The following sections cover Split Tunneling and several other inter-
ception-related settings on the client.
4.2.1 Configuring Split Tunneling
Split tunneling is one of the most basic interception mechanisms used by the
client. When it is enabled, the client filters traffic on the basis of the IP address
of the destination network. the SSL VPN administrator can also configure the
client to filter traffic based on the destination port and the name of the appli-
cation that is attempting to connect to the remote network. Traffic meant for
the remote network is sent through the secure SSL VPN tunnel, and the rest of