Allow Mobile VPN with SSL Users to use Resources Through a BOVPN Tunnel

Before your Mobile VPN with SSL users can use resources through a BOVPN tunnel, you must add the appropriate tunnel routes and resources to your BOVPN configuration.

In this example, a BOVPN tunnel is already configured between the Site A Firebox and the Site B Firebox.

Site A Firebox configuration

External interface IP address — 203.0.113.2

Trusted network IP address — 10.0.1.0/24

Mobile VPN with SSL IP address pool — 192.168.113.0/24

Site B Firebox configuration

External interface IP address — 198.51.100.2

Trusted network IP address — 10.50.1.0/24

To allow the Mobile VPN with SSL users who connect to the Firebox at Site A to use resources on the trusted network of the Firebox at Site B, follow the procedures in the next sections.

Configure the Firebox at Site A

First, you must configure the Firebox at Site A to allow SSL VPN traffic to the Firebox at Site B.

Configure the Firebox at Site B

Next, you must configure the Firebox at Site B to accept traffic from Mobile VPN for SSL users through the BOVPN tunnel to its local network.