Migrate Web access to Finance server for Finance group

Next, migration can be expanded to more users in another control group. This time, the Finance web server 10.88.0.5 which is used by the Finance Team. In the Teleworking setup, this corresponds to the following policy configurations:

config firewall policy
    edit 10
        set name "SSL_VPN-Finance"
        set srcintf "ssl.root"
        set dstintf "port2"
        set action accept
        set srcaddr "all"
        set dstaddr "Webserver" "Finance"
        set schedule "always"
        set service "ALL"
        set inspection-mode proxy
        set logtraffic all
        set groups "LDAP-Finance"
    next
end

In the above Teleworking configurations, the Webserver address group is also allowed. However, this will be migrated last.

We will use the same access proxy gateway IP and server object as defined in the previous section. In addition, we will need a new FQDN for the Finance server and DNS entry to map to the access proxy.

Finance server – zfinance.ztnademo.com

Migrate Web access to Finance server for Finance group

config firewall policy edit 10 set name "SSL_VPN-Finance" set srcintf "ssl.root" set dstintf "port2" set action accept set srcaddr "all" set dstaddr "Webserver" "Finance" set schedule "always" set service "ALL" set inspection-mode proxy set logtraffic all set groups "LDAP-Finance" next end

In the above Teleworking configurations, the Webserver address group is also allowed. However, this will be migrated last.

Finance server – zfinance.ztnademo.com

SSL VPN to ZTNA Migration Guide

Migrate Web access to Finance server for Finance group

Migrate Web access to Finance server for Finance group

Migrate Web access to Finance server for Finance group