WebVPN
From Wiki of WFilter NG Firewall
				
								
				
				
																
				
				
								
				| Contents | 
1 WebVPN
WebVPN offers clientless VPN access to an organization's internal websites and web applications through a browser, without any need of additional client software.
2 Settings
- WebVPN: whether to enable WebVPN service.
- Debug: whether to enable debug log. When enabled, you can click "Check Log" to check error log.
- Domain: The WebVPN system shall be accessed via a domain name. For example: wfilterngf.com( no "www." required.). Dynamic domains are also supported. Please note: you need to apply the domain from a domain registration provider.
- Protocol: HTTP or HTTPS access to the WebVPN service.
- Port: Port of the WebVPN system. Please do not conflict with other service ports. Please note that 80 and 443 ports are occupied by the WebUI system. If you want to run WebVPN on these two ports, you might setup "port forwarding" to forward 80/443 port to the WebVPN service.
- Edit Login
Edit the login page when visiting the WebVPN system.
3 Authentication
- Timeout: the maximum session timeout when browser is not closed. A session always timeout immediately if browser is closed.
-  User & Pass Auth: authenticate by username and password, supported authtype:
- "Local Auth": authenticate with username and password of local accounts. Only "local users" with "VPN" priviledge have VPN access.
- "Email Auth": send credentials to a pop/imap email server for authentication.
- "Ldap Auth": send credentials to a ldap server for authentication.
- "Radius Auth": send credentials to a remote radius server for authentication.
 
- Third Party Auth: authenticate via a third party service: dingtalk, business wechat.
4 SSL Certificate
For https access, you can upload your website SSL certificate files in "Certificate" settings.
5 Contents Settings
List of available internal web services. Please note: only web services are available.
-  Content Settings
- Domain: subdomain for this internal web service.
- Name: alias for this web service.
- Target URL: target URL of local network web service, both http and https can be supported. For example:
 
- Edit Portal
Edit the portal page which will be displayed upon successful login.







