Citrix Systems 9000 Series User Manual

Configuring the SSL VPN Client

4-8

SSL VPN User’s Guide

2. Right-click the icon and select 

 from the short-cut menu. The Citrix 

Access Gateway Enterprise Edition dialog box is displayed as shown in 

3. Right-click 

 and select 

from the short-cut menu. An additional password field is added 

as shown in the following figure.

Secondary password field

As mentioned in the first chapter, when a TCP or a UDP application, like Telnet 

or Microsoft Outlook, connects to a server in remote network, the client inter-

cepts the connection, secures it using SSL encryption, and redirects it to the 

server through the secure SSL VPN tunnel. However, you might need to 

change these settings. For instance, if you need to visit a Web site on the 

Internet, you do not need to access resources on the remote intranet. Instead, 

requests from your Web browser need to be diverted directly to the Internet. 

To do this, you need to enable Split Tunneling. This feature allows the client to 

divert requests, not meant for the remote network, to another appropriate 

network. The following sections cover Split Tunneling and several other inter-

ception-related settings on the client.

Split tunneling is one of the most basic interception mechanisms used by the 

client. When it is enabled, the client filters traffic on the basis of the IP address 

of the destination network. the SSL VPN administrator can also configure the 

client to filter traffic based on the destination port and the name of the appli-

cation that is attempting to connect to the remote network. Traffic meant for 

the remote network is sent through the secure SSL VPN tunnel, and the rest of