User guide
User Guide 283
21
About Mobile VPN with SSL
The WatchGuard Mobile VPN with SSL client is installed on a user’s computer, whether the user travels or
works from home. The user can then connect with a standard Internet connection and activate the Mobile
VPN client.
The Mobile VPN client then creates an encrypted tunnel to your trusted and optional networks, which are
protected by a WatchGuard Firebox. The Mobile VPN client allows you to supply remote access to your internal
networks and not compromise your security.
The Mobile VPN with SSL client uses Secure Sockets Layer (SSL) to secure the connection.
Before You Begin
Make sure your client meets these basic client requirements.
Decide whether you want to require that all remote user Internet traffic routes through the VPN tunnel
to the Firebox. For more information, see Options for Internet access through a Mobile VPN tunnel
.
Steps required to set up your tunnels
1. Configure the Firebox for Mobile VPN with SSL. This process automatically creates a Firebox
authentication group called SSLVPN-Users.
2. Add remote users to authentication groups
. If you want to use the Firebox as an authentication server,
add users to the SSLVPN-Users group. If you want to use a third-party authentication server, use the
instructions provided in that vendor’s documentation.
3. Tell your remote users to download the client software
from your Firebox.
4. Tell your remote users to install the client software
on their computers.
Remote users can now connect to the Firebox with the Mobile VPN with SSL client
.
Options for Mobile VPN with SSL tunnels
If your network has special security needs, you can modify the advanced settings for your Mobile VPN with
SSL tunnels.