Filter
Top Products
Virtual Private Networking Using SSL Connections
285
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
Assuming that no conflicting user or group policies have been configured, if a user attempted
to access FTP servers at the following addresses, the actions listed would occur:
• 1
0.0.0.1. The user would be blocked by Policy 1.
• 1
0.0.1.5. The user would be blocked by Policy 2.
• 1
0.0.0.10. The user would be granted access by Policy 3. The IP address range
10.0.0.5–10.0.0.20 is more specific than the IP address range that is defined in Policy 1.
• ft
p.company.com. The user would be granted access by Policy 3. A single host name is
more specific than the IP address range that is configured in Policy 2.
Note: The user would not be able to access ftp.company.com using its IP
address 10.0.1.3. The VPN firewall’s policy engine does not perform
reverse DNS lookups.
View Policies
To view the existing SSL VPN policies:
1. Select VPN
> SSL VPN. The SSL VPN submenu tabs display, with the Policies screen
in view. (The following figure shows some examples.)
Figure 187.
2. Make your selection from the following Query options:
• T
o view all global policies, select the Global radio button.
• T
o view group policies, select the Group radio button, and then select the relevant
group’s name from the drop-down list.
• T
o view user policies, select the User radio button, and then select the relevant user’s
name from the drop-down list.