SMA tunnel all + Fw DPI-SSL: is it a working scenario?
Enzino78
Enthusiast ✭✭
Hello Community, I have a request from our customer that has both SMA 410 and fw NSa 5650 asking me if it is possible to use the decription functionaly of their NSa firewall (DPI-SSL) onto the tunnelled-all traffic flowing throught users autenticated by their SMA 410.
Is such configuration supported? Is it documented? Any constrains?
Thansk for yuor help.
Category: Secure Mobile Access Appliances
0
Answers
@Enzino78 if you enable Client DPI-SSL on the Zone where your NetExtender Clients (SMA Appliance) are located any outgoing Client Traffic will be inspected as usual. For the Firewall the NetExtender IP does not look different then any other client.
--Michael@BWC