4.1  Usage of the SSL-VPN interface

The interface can be accessed from most of common web browsers (see chapter 1  Introduction). Specify URL in the browser in the

https://server/

format, where server represents the name or IP address of the WinRoute host. If SSL-VPN uses another port than the default port for HTTPS (443), it is necessary to specify the used port in the URL, e.g.

https://server:12345/

Upon a connection to the server, the SSL-VPN interface's welcome page is displayed localized to the language set in the browser. If the language defined as preferred is not available, the English version will be used.

For access to the network by SSL-VPN, authentication to the particular domain at the login page by username and password is required. The login information usually match the authentication details used for login to the user's operating system. Any operations with shared files and folders are performed under the identity of the user currently logged in.

Clientless SSL-VPN — login dialog

Figure 4.1. Clientless SSL-VPN — login dialog


Warning

In network with multiple domains (typically in huge branched organizations), username with domain can be required (e.g. wsmith@us-office.company.com). To gain such information, contact your firewall's administrator.

Handling files and folders

The way the SSL-VPN interface is handled is similar to how the My Network Places system window is used.

Clientless SSL-VPN — main page

Figure 4.2. Clientless SSL-VPN — main page


At the top of the page, an entry is available, where location of the demanded shared item (so called UNC path) can be specified — for example:

\\server\folder\subfolder

The path may be specified regularly even if folder or/and file names include blank spaces — for example:

\\server\my folder\my file.doc

All shared items in the domain can be browsed using a so called navigation tree on the left. The navigation tree is linked to the entry (this means that in the entry, the path associated with the selected item in the tree is displayed, and vice versa — if a path is entered in the line, a corresponding item is selected in the tree).

Right under the navigation tree, actions available for the specified location (i.e. for the selected item or folder) is provided. The basic functions provided by the SSL-VPN interface are download of a selected file to the local host (the host where the user's browser is running) and uploading a file from the local host to a selected location in the remote domain (the user must have write rights for the destination). Downloading or uploading of more than one file or of entire folders is not possible.

For files and folders, any standard functions, such as copying, renaming, moving and removals, are still available. Files and folders can be copied or moved within the frame of shared files in the particular domain. In the current path, new folders can be created and empty folders can be removed.

Antivirus control

WinRoute administrator can set antivirus control for files transferred via the SSL-VPN interface (only saved files are scanned for viruses by default). The SSL-VPN interface thus guarantees security of files transferred between the client host and a remote local network. If a virus is detected in either downloaded or saved file, the operation is interrupted and a warning is displayed.

Bookmarks

For quick access to frequently used network items, so called bookmarks can be created. Bookmarks work on principles similar to the Favorites tool in Windows operating systems.

The Add to bookmarks option creates a new bookmark for the current path (the path displayed in the URL entry). It is recommended to label by a short unique name — this will help you with the bookmarks maintenance, especially if more bookmarks are used. If the name is not specified, the bookmark will be listed in the list of bookmarks under the UNC path.

The Folder administration option allows editing or removing of created bookmarks as well as creating of a new bookmark for any path (folder). The destination path can be specified manually or it can be browsed in the folder tree and it is also possible to use an existing bookmark as a starting point.

Clientless SSL-VPN — new bookmark

Figure 4.3. Clientless SSL-VPN — new bookmark


Examples of operations with files and folders

In this section, several examples of manipulation with files and folders via the SSL-VPN interface.

Creating folders

The dialog allows creating of a new folder in the specified location. By default, the current path specified in the URL line is indicated. However, it is possible to enter a new path.

Clientless SSL-VPN — new folder

Figure 4.4. Clientless SSL-VPN — new folder


Use the Edit button to select a new path (folder) where the new folder will be created:

  • use a bookmark,

  • select it in the folder tree.

Clientless SSL-VPN — destination path (folder) selection

Figure 4.5. Clientless SSL-VPN — destination path (folder) selection


Renaming a file or a folder

Renaming is very simple — use the dialog to specify a new name for the selected folder or file.

Copying or moving files/folders

The SSL-VPN interface allows copying or moving of any number of files or/and folders at a time. First, select files and folders by checking the fields next to their names (checking of the field in the header selects all files and folders in the current location).

Clientless SSL-VPN — copying or moving of files/folders

Figure 4.6. Clientless SSL-VPN — copying or moving of files/folders


In the copy/move dialog, specify the destination path (folder) or select it in the tree or it is also possible to use a bookmark (see above).

Moving of files / folders

It is also possible to remove any number of folders or/and files as well as all files and folders in the current path.

Downloading files

Downloading of files from remote shared folders to the local host is performed in the same way as usual downloading of files from web pages. Simply click on a file to open a standard download dialog.

It is not possible to download whole folders or multiple files at a time.

Uploading files

The upload dialog allows selection of a destination folder (by default, the folder which is currently opened in the SSL-VPN interface is set). Destination folder can be specified manually, selected in the folder tree or loaded from a bookmark (see above).

Use the File entry to specify full path to a local file. Files can be also selected by using the Browse... button (click this link to open the standard system dialog for opening of a file).

Clientless SSL-VPN — uploading files to shared folders

Figure 4.7. Clientless SSL-VPN — uploading files to shared folders


It is not possible to upload whole folders or multiple files at a time.