Using OCSP with VPN Policies

The firewall OCSP settings can be configured on a policy level or globally.

To configure OCSP checking for individual VPN policies, use the Advanced tab of the VPN Policy configuration page

1. Select Enable OCSP Checking.
2. Specify the OCSP Responder URL of the OCSP server, for example http://192.168.168.220:2560 where 192.168.168.220 is the IP address of your OCSP server and 2560 is the default port of operation for the OpenCA OCSP responder service.