Sslvpn Gateway; Sslvpn Ip Address-Pool - H3C MSR Series Command Reference Manual

sslvpn gateway

Use sslvpn gateway to create an SSL VPN gateway and enter its view, or enter the view of an
existing SSL VPN gateway.
Use undo sslvpn gateway to delete an SSL VPN gateway.
Syntax
sslvpn gateway gateway-name
undo sslvpn gateway gateway-name
Default
No SSL VPN gateways exist.
Views
System view
Predefined user roles
network-admin
Parameters
gateway-name: Specifies an SSL VPN gateway name, a case-insensitive string of 1 to 31
characters. Valid characters are letters, digits, and underscores (_).
Usage guidelines
An SSL VPN gateway resides between remote users and the enterprise network to ensure secure
access of remote users to the enterprise internal network. The SSL VPN gateway establishes an
SSL connection to a remote user, and then authenticates the user before allowing the user to access
an internal server.
You must perform the following tasks in the view of an SSL VPN gateway:
•
Execute the ip address command to configure an IP address and a port number for the SSL
VPN gateway.
•
Execute the ssl server-policy command to apply an SSL server policy to the SSL VPN
gateway.
•
Execute the service enable command to enable the SSL VPN gateway.
You cannot delete an SSL VPN gateway that has been associated with an SSL VPN context. To
delete the SSL VPN gateway, execute the undo gateway command to remove the association and
then execute the undo sslvpn gateway command.
Examples
# Create an SSL VPN context named gw1 and enter its view.
<Sysname> system-view
[Sysname] sslvpn gateway gw1
[Sysname-sslvpn-gateway-gw1]
Related commands
display sslvpn gateway

sslvpn ip address-pool

Use sslvpn ip address-pool to create an address pool.
Use undo sslvpn ip address-pool to delete an address pool.
799