How to create custom Generic Multi Servers SILENT SSLVPN template for Client/Server
application Access
Author: Idan (DeviceZ) Plotnik, Security
Engineer, Forefront MVP
Date: 30/10/2008
Before you begin
When using the default "Generic Client App (Multi Servers)" template to
publish Client/Server Applications with Microsoft IAG, by default the end user will
get the following popup
The following paper describes how to create custom Generic Multi Servers
SILENT SSLVPN template for Client/Server Applications so the end user will
not see the popup above
Important to know!
Please make sure you create a CustomUpdate folder as describe below!
If you don't see the new custom template after you finish creating the custom template
- PLEASE CLOSE and OPEN again the configuration console
You can download the custom code presented in this article
from www.ForefrontSecurity.ORG
Prerequisites
Non
Configuration Procedures
Create custom files
1.
Create new file "SSLVPNTemplates.xml"
in the following location c:\Whale-Com\e-Gap\von\conf\
2.
Copy the following code
into the file you created
<config>
<templates version="3" use-lsp="1">
<!--
******************************************************************************
** Generic silent simple relay
- _requires_ hosts file support **
** Created by Idan Plotnik ForefrontSecurity.ORG **
******************************************************************************
-->
<template name="SilentGenericRelay"
userrights="2" use-with-lsp="yes" default="yes"><!--All
platforms-->
<port id="0" remoteport="0"
flags="650" default="yes"/><!--All platforms-->
<config-file flags="65" path="%hosts%"
default="yes"><!--All platforms-->
<![CDATA[
%localip%
%relayname0%
%localip%
%relayname1%
]]>
</config-file>
</template>
</templates>
</config>
3.
To test the file you created
please double click on it and check that you don't have errors - see the print screens
below:
Undamaged file output
Damaged file output
4.
Create new Folder "CustomUpdate"
in the following directory c:\Whale-Com\e-Gap\von\conf\wizarddefaults\
5.
Create new file "WizardDefaultParam.Ini"
in the following location c:\Whale-Com\e-Gap\von\conf\
6.
Copy the following code
into the file "WizardDefaultParam.Ini" you created
[Application_List]
NumOfApps=1
App1=GenericRelayMultiSilent
[GenericRelayMultiSilent]
Name=Generic Client App (Multi Servers, Silent)
AppType=1
WhaleApp=0
UseLLNMode=1
Types=1,2
Image=images/AppIcons/GenericHTTP.gif
SSLVpnTemplate=SilentGenericRelay
SSLVPNNumOfElements=2
SSLVPNElement0ID=0IPBIND
SSLVPNElement1ID=0
0IPBINDName=Servers:
0IPBINDType=0
0IPBINDGuiType=2
0IPBINDValidation=IP/DNS NotEmpty
0Name=Ports:
0Type=1
0GuiType=0
0Value=
0Validation=Port NotEmpty
ActivateSmugglingProtection=0
MaxHTTPBodySize=49152
ContentTypeList=application/x-www-form-urlencoded|multipart/form-data
Select the custom Client/Server Application you created
1.
In the Application section
of you Trunk / Portal, click "Add"
2.
Go to "Client/Server
and Legacy Applications"
3.
Choose the custom template
your created "Generic Client App (Multi Servers, Silent)"
Thank you very much for reading this article
If you have any issues with this custom template please go to our Technical Forums
site http://Forums.ForefrontSecurity.ORG
and post your questions there
Idan (DeviceZ) Plotnik
Security Engineer, Forefront MVP
ForefrontSecurity.ORG