Requirements

This section describes the requirements for deploying SSL VPN tunnels with an SNS firewall and compatible SSL VPN clients.

An appropriately scaled SNS firewall

The maximum number of SSL VPN tunnels allowed on SNS firewalls varies according to the model used. You must have a model that fits your requirements.

You can find this information on the Stormshield website, under Product range (SNS), by selecting your model.

A compatible SSL VPN client

Each user must have a compatible SSL VPN client on their workstation and/or mobile device to set up SSL VPN tunnels with the SNS firewall.

Compatible SSL VPN clients:

• The Stormshield SSL VPN client. For further information on installing the client, refer to the Stormshield SSL VPN client v5 installation guide. To find out which versions are currently supported, refer to the Network Security & Tools life cycle guide.
• The OpenVPN Connect client. This SSL VPN client does not have a mode in which the SNS firewall's SSL VPN configuration can be automatically retrieved, and is not compatible with the SNS firewall's client workstation verification feature.

NOTE
To test the configuration before deployment, install a compatible SSL VPN client on some of your devices now. To deploy the SSL VPN in your organization, you can start by configuring the SNS firewall, then installing all the SSL VPN clients.

Prior connection of the SNS firewall to a directory

The SNS firewall must be connected to a directory. Check this connection in the SNS firewall's web administration interface in Configuration > Users > Authentication, Available methods tab. An LDAP line must appear in the grid.

For more information, refer to the section Directory configuration in the v4 user guide or v5 user guide, depending on the SNS version used.