Setting up filtering rules
In the menu Configuration > Security policy > Filtering and NAT:
- Select your filtering policy.
- In the Filtering tab, click on the menu New rule > Standard rule.
- Fill in the Action, Source, Destination and Destination port fields.
In the case presented, client workstations located on remote sites must be able to connect in HTTP to the intranet server located on the local network of the main site (rule no. 1). You can also temporarily add, for example, ICMP to test the setup of the tunnel more easily (rule no. 2).
The filtering rules will look like this: