- Go to VPN > SSL-VPN Portals and edit the full-access SSL VPN portal that allows the use of tunnel mode and web mode.
- Under Tunnel Mode, disable Enable Split Tunneling for both IPv4 and IPv6 traffic so that all Internet traffic goes through the FortiGate.
- Set Source IP Pools to use the default IP range SSLVPN_TUNNEL_ADDR1.
- Under Enable Web Mode, create Predefined Bookmarks for any internal resources that SSL VPN users need to access.
In this example, the bookmark allows the remote user RDP access to a computer on the internal network.