- Kerio WinRoute Firewall Administrator's Guide

21.5 Example of Kerio VPN conﬁguration: company with a ﬁlial oﬃce

317

In step 5, select Create rules for Kerio VPN server. Status of the Create rules for Kerio

Clientless SSL-VPN option is irrelevant (this example does not include Clientless SSL-

VPN interface’s issues).

Figure 21.14 Headquarter — creating default traﬃc rules for Kerio VPN

This step will create rules for connection of the VPN server as well as for communi-

cation of VPN clients with the local network (through the ﬁrewall).

Figure 21.15 Headquarter — default traﬃc rules for Kerio VPN

When the VPN tunnel is created, customize these rules according to the restriction

requirements (see item 6).

Note: To keep the example as simple and transparent as possible, only traﬃc rules

relevant for the Kerio VPN conﬁguration are mentioned.

3. Customize DNS conﬁguration as follows:

• In conﬁguration of the DNS Forwarder in WinRoute, specify DNS servers to which

DNS queries which are not addressed to the company.com domain will be for-

warded (primary and secondary DNS server of the Internet connection provider

by default).