ZyXEL Communications USG 2000 User Manual
Chapter 26 SSL VPN
ZyWALL USG 2000 User’s Guide
482
You do not have to install additional client software on the remote user computers
for access.
for access.
Figure 343 Network Access Mode: Reverse Proxy
Full Tunnel Mode
In full tunnel mode, a virtual connection is created for remote users with private
IP addresses in the same subnet as the local network. This allows them to access
network resources in the same way as if they were part of the internal network.
IP addresses in the same subnet as the local network. This allows them to access
network resources in the same way as if they were part of the internal network.
Figure 344 Network Access Mode: Full Tunnel Mode
SSL Access Policy
An SSL access policy allows the ZyWALL to perform the following tasks:
• apply Endpoint Security (EPS) checking to require users’ computers to comply
with defined corporate policies before they can access the SSL VPN tunnel.
• limit user access to specific applications or files on the network.
• allow user access to specific networks.
• assign private IP addresses and provide DNS/WINS server information to
• allow user access to specific networks.
• assign private IP addresses and provide DNS/WINS server information to
remote users to access internal networks.
SSL Access Policy Objects
The SSL access policies reference the following objects. If you update this
information, in response to changes, the ZyWALL automatically propagates the
information, in response to changes, the ZyWALL automatically propagates the