防火墙 F1000 SSLVPN web访问资源问题
问题描述:
sslvpn web访问资源跳转后显示
Connect server failed.
跳转后的web输入框显示:https://hq.it-tech.xyz:10443/_proxy2/https/443/10.10.10.162/#/login
dis sslvpn session user 已匹配策略 route-inside
debug提示如下:
[Lute-F100-10.172.192.254-sslvpn-context-sslvpn]
[Lute-F100-10.172.192.254-sslvpn-context-sslvpn]%Aug 15 13:45:56:682
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
17 03 03 02 30
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:065
*Aug 15 13:46:00:066
*Aug 15 13:46:00:066
*Aug 15 13:46:00:066
关键配置如下:
sslvpn context sslvpn
vpn-instance google
gateway sslvpn
ip-tunnel interface SSLVPN-AC1
ip-tunnel address-pool sslvpn mask 255.255.255.0
ip-tunnel dns-server primary 8.8.8.8
ip-tunnel dns-server secondary 8.8.4.4
ip-route-list auto
ip-route-list route-inside
include 10.0.0.0 255.255.0.0
include 10.10.10.0 255.255.255.0
include 10.172.192.0 255.255.255.0
include 172.17.100.0 255.255.255.0
include 172.17.110.0 255.255.255.0
include 172.17.150.0 255.255.255.0
include 172.17.151.0 255.255.255.0
include 172.17.152.0 255.255.255.0
url-item eve
url https://10.10.10.162/#/login
url-list server
heading Server
resources url-item eve
policy-group route
policy-group route-all
ip-tunnel access-route force-all
policy-group route-inside
ip-tunnel access-route ip-route-list route-inside
resources url-list server
default-policy-group route-inside
aaa domain it-tech.xyz
service enable
组网及组网描述:
下发的路由没问题吧
9小时前回答 (6)防火墙ping 10.10.10.162没有问题,,,不是sslvpn IP网关的机制,,用的是web资源,不需要给我电脑装sslvpn客户端吧? 全部基于web
router1989不需要,在sslvpn web上访问资源
所以这个有可能问题出在哪儿?
router1989换个浏览器试试
换过了,不行
router1989联系400吧
你正在内容来源:知了社区,防火墙 F1000 SSLVPN web访问资源问题
