Fortinet black logo

CLI Reference

config vpn ssl client

config vpn ssl client

client

config vpn ssl client

Description: client

edit <name>

set comment {var-string}

set interface {string}

set user {string}

set psk {password-3}

set peer {string}

set server {string}

set port {integer}

set realm {string}

set status [enable|disable]

set certificate {string}

set source-ip {string}

set distance {integer}

set priority {integer}

next

end

config vpn ssl client

Parameter

Description

Type

Size

Default

comment

Comment.

var-string

Maximum length: 255

interface

SSL interface to send/receive traffic over.

string

Maximum length: 15

user

Username to offer to the peer to authenticate the client.

string

Maximum length: 35

psk

Pre-shared secret to authenticate with the server (ASCII string or hexadecimal encoded with a leading 0x).

password-3

Not Specified

peer

Authenticate peer's certificate with the peer/peergrp.

string

Maximum length: 35

server

IPv4, IPv6 or DNS address of the SSL-VPN server.

string

Maximum length: 63

port

SSL-VPN server port.

integer

Minimum value: 1 Maximum value: 65535

443

realm

Realm name configured on SSL-VPN server.

string

Maximum length: 35

status

Enable/disable this SSL-VPN client configuration.

option

-

enable

Option

Description

enable

Enable the SSL-VPN configuration.

disable

Disable the SSL-VPN configuration.

certificate

Certificate to offer to SSL-VPN server if it requests one.

string

Maximum length: 35

source-ip

IPv4 or IPv6 address to use as a source for the SSL-VPN connection to the server.

string

Maximum length: 63

distance

Distance for routes added by SSL-VPN .

integer

Minimum value: 1 Maximum value: 255

10

priority

Priority for routes added by SSL-VPN .

integer

Minimum value: 0 Maximum value: 4294967295

0

config vpn ssl client

client

config vpn ssl client

Description: client

edit <name>

set comment {var-string}

set interface {string}

set user {string}

set psk {password-3}

set peer {string}

set server {string}

set port {integer}

set realm {string}

set status [enable|disable]

set certificate {string}

set source-ip {string}

set distance {integer}

set priority {integer}

next

end

config vpn ssl client

Parameter

Description

Type

Size

Default

comment

Comment.

var-string

Maximum length: 255

interface

SSL interface to send/receive traffic over.

string

Maximum length: 15

user

Username to offer to the peer to authenticate the client.

string

Maximum length: 35

psk

Pre-shared secret to authenticate with the server (ASCII string or hexadecimal encoded with a leading 0x).

password-3

Not Specified

peer

Authenticate peer's certificate with the peer/peergrp.

string

Maximum length: 35

server

IPv4, IPv6 or DNS address of the SSL-VPN server.

string

Maximum length: 63

port

SSL-VPN server port.

integer

Minimum value: 1 Maximum value: 65535

443

realm

Realm name configured on SSL-VPN server.

string

Maximum length: 35

status

Enable/disable this SSL-VPN client configuration.

option

-

enable

Option

Description

enable

Enable the SSL-VPN configuration.

disable

Disable the SSL-VPN configuration.

certificate

Certificate to offer to SSL-VPN server if it requests one.

string

Maximum length: 35

source-ip

IPv4 or IPv6 address to use as a source for the SSL-VPN connection to the server.

string

Maximum length: 63

distance

Distance for routes added by SSL-VPN .

integer

Minimum value: 1 Maximum value: 255

10

priority

Priority for routes added by SSL-VPN .

integer

Minimum value: 0 Maximum value: 4294967295

0