{"id":23515,"date":"2025-06-12T16:18:04","date_gmt":"2025-06-12T09:18:04","guid":{"rendered":"https:\/\/vacif.com\/?p=23515"},"modified":"2025-08-08T15:38:03","modified_gmt":"2025-08-08T08:38:03","slug":"huong-dan-cau-hinh-ssl-vpn-client-to-site-sophos-firewall","status":"publish","type":"post","link":"https:\/\/vacif.com\/en\/huong-dan-cau-hinh-ssl-vpn-client-to-site-sophos-firewall\/","title":{"rendered":"H\u01b0\u1edbng D\u1eabn C\u1ea5u H\u00ecnh SSL VPN Client To Site \u2013 Sophos Firewall"},"content":{"rendered":"\n

I – T\u1ed5ng quan<\/span><\/h2><\/div><\/div><\/div>\n\n\n\n
    \n
  1. <\/li>\n<\/ol>\n\n\n\n

    SSL VPN Client to Site l\u00e0 m\u1ed9t ph\u01b0\u01a1ng th\u1ee9c k\u1ebft n\u1ed1i an to\u00e0n cho ph\u00e9p ng\u01b0\u1eddi d\u00f9ng t\u1eeb xa truy c\u1eadp v\u00e0o m\u1ea1ng n\u1ed9i b\u1ed9 doanh nghi\u1ec7p th\u00f4ng qua Internet b\u1eb1ng c\u00e1ch s\u1eed d\u1ee5ng ph\u1ea7n m\u1ec1m VPN client. V\u1edbi SSL VPN, d\u1eef li\u1ec7u \u0111\u01b0\u1ee3c m\u00e3 h\u00f3a qua giao th\u1ee9c SSL\/TLS gi\u00fap \u0111\u1ea3m b\u1ea3o t\u00ednh b\u1ea3o m\u1eadt trong qu\u00e1 tr\u00ecnh truy\u1ec1n t\u1ea3i.<\/p>\n\n\n\n

    Tr\u00ean Sophos Firewall, SSL VPN th\u01b0\u1eddng \u0111\u01b0\u1ee3c tri\u1ec3n khai \u0111\u1ec3 h\u1ed7 tr\u1ee3 nh\u00e2n vi\u00ean l\u00e0m vi\u1ec7c t\u1eeb xa (Work from Home), k\u1ef9 thu\u1eadt vi\u00ean h\u1ed7 tr\u1ee3 ho\u1eb7c c\u00e1c nh\u00e0 cung c\u1ea5p d\u1ecbch v\u1ee5 truy c\u1eadp v\u00e0o h\u1ec7 th\u1ed1ng n\u1ed9i b\u1ed9 \u0111\u1ec3 th\u1ef1c hi\u1ec7n c\u00f4ng vi\u1ec7c m\u1ed9t c\u00e1ch an to\u00e0n v\u00e0 linh ho\u1ea1t.<\/p>\n\n\n\n

    1.1 – \u01afu \u0111i\u1ec3m c\u1ee7a SSL VPN:<\/strong><\/span><\/h2><\/div><\/div><\/div>\n\n\n\n
      \n
    • Kh\u00f4ng y\u00eau c\u1ea7u IP t\u0129nh t\u1eeb ph\u00eda client.<\/li>\n\n\n\n
    • D\u1ec5 d\u00e0ng tri\u1ec3n khai v\u00e0 s\u1eed d\u1ee5ng th\u00f4ng qua ph\u1ea7n m\u1ec1m Sophos Connect.<\/li>\n\n\n\n
    • C\u00f3 th\u1ec3 ki\u1ec3m so\u00e1t, gi\u1edbi h\u1ea1n quy\u1ec1n truy c\u1eadp d\u1ef1a tr\u00ean user\/group.<\/li>\n\n\n\n
    • H\u1ed7 tr\u1ee3 x\u00e1c th\u1ef1c hai l\u1edbp (Two-Factor Authentication).<\/li>\n\n\n\n
    • T\u00ccNH HU\u1ed0NG C\u1ea4U H\u00ccNH<\/strong><\/li>\n<\/ul>\n\n\n\n

      1.2 – S\u01a1 \u0111\u1ed3 c\u1ea5u h\u00ecnh:<\/span><\/h2><\/div><\/div><\/div>\n\n\n\n

      \"A<\/p>\n\n\n\n

      1.3 – M\u1ee5c ti\u00eau:<\/span><\/h2><\/div><\/div><\/div>\n\n\n\n

      C\u1ea5u h\u00ecnh SSL VPN tr\u00ean Sophos Firewall \u0111\u1ec3 ng\u01b0\u1eddi d\u00f9ng \u1edf ngo\u00e0i c\u00f4ng ty c\u00f3 th\u1ec3 k\u1ebft n\u1ed1i v\u1ec1 m\u1ea1ng LAN n\u1ed9i b\u1ed9 th\u00f4ng qua ph\u1ea7n m\u1ec1m Sophos Connect Client.<\/p>\n\n\n\n

      1.4 – Th\u00f4ng tin m\u00f4 ph\u1ecfng:<\/span><\/h2><\/div><\/div><\/div>\n\n\n\n
        \n
      • D\u1ea3i m\u1ea1ng n\u1ed9i b\u1ed9 (LAN): 10.10.10.0\/24<\/li>\n\n\n\n
      • IP c\u1ee7a Sophos Firewall (port WAN): 123.20.173.178<\/li>\n\n\n\n
      • D\u1ea3i IP c\u1ea5p cho client VPN: 10.102.10.0\/24<\/li>\n\n\n\n
      • Ng\u01b0\u1eddi d\u00f9ng VPN: vpnuser01, thu\u1ed9c group SSLVPN-Users<\/li>\n<\/ul>\n\n\n\n

        1.5 – Y\u00eau c\u1ea7u:<\/span><\/h2><\/div><\/div><\/div>\n\n\n\n

        Ng\u01b0\u1eddi d\u00f9ng c\u00f3 th\u1ec3 truy c\u1eadp c\u00e1c t\u00e0i nguy\u00ean trong LAN khi k\u1ebft n\u1ed1i VPN<\/p>\n\n\n\n

        II – H\u01b0\u1edbng d\u1eabn c\u1ea5u h\u00ecnh<\/span><\/h2><\/div><\/div><\/div>\n\n\n\n

        2.1 – T\u1ea1o user v\u00e0 group VPN cho ng\u01b0\u1eddi d\u00f9ng<\/span><\/h2><\/div><\/div><\/div>\n\n\n\n
          \n
        1. <\/li>\n<\/ol>\n\n\n\n

          V\u00e0o menu Authentication<\/strong> \u2192 chuy\u1ec3n sang tab Groups<\/strong> \u2192 nh\u1ea5n Add<\/strong> \u0111\u1ec3 t\u1ea1o nh\u00f3m ng\u01b0\u1eddi d\u00f9ng m\u1edbi. <\/p>\n\n\n\n

          \"\"<\/figure>\n\n\n\n

          2.2 – C\u1ea5u h\u00ecnh nh\u00f3m ng\u01b0\u1eddi d\u00f9ng:<\/strong><\/span><\/h2><\/div><\/div><\/div>\n\n\n\n
            \n
          • Group name<\/strong>: \u0110\u1eb7t t\u00ean cho nh\u00f3m (v\u00ed d\u1ee5: SSLVPN-Users)<\/li>\n\n\n\n
          • Group type<\/strong>: Ch\u1ecdn Normal<\/strong><\/li>\n\n\n\n
          • Surfing quota<\/strong>: Ch\u1ecdn Unlimited Internet Access<\/strong> ho\u1eb7c ch\u1ecdn quota gi\u1edbi h\u1ea1n n\u1ebfu c\u1ea7n<\/li>\n\n\n\n
          • Access time<\/strong>: Ch\u1ecdn Allowed all the time<\/strong> ho\u1eb7c c\u1ea5u h\u00ecnh khung th\u1eddi gian truy c\u1eadp t\u00f9y \u00fd
            \u2192 Nh\u1ea5n Save<\/strong> \u0111\u1ec3 l\u01b0u l\u1ea1i nh\u00f3m v\u1eeba t\u1ea1o.<\/li>\n<\/ul>\n\n\n
            \n
            \"\"<\/figure>\n<\/div>\n\n\n

            2.3 – T\u1ea1o t\u00e0i kho\u1ea3n ng\u01b0\u1eddi d\u00f9ng VPN:<\/strong><\/span><\/h2><\/div><\/div><\/div>\n\n\n\n
              \n
            • Chuy\u1ec3n sang tab Users<\/strong> \u2192 nh\u1ea5n Add<\/strong><\/li>\n\n\n\n
            • Username<\/strong>: \u0110\u1eb7t t\u00ean ng\u01b0\u1eddi d\u00f9ng (v\u00ed d\u1ee5: vpnuser01)<\/li>\n\n\n\n
            • User type<\/strong>: Ch\u1ecdn User<\/strong><\/li>\n\n\n\n
            • Password<\/strong>: Nh\u1eadp m\u1eadt kh\u1ea9u cho ng\u01b0\u1eddi d\u00f9ng<\/li>\n\n\n\n
            • Email<\/strong>: Nh\u1eadp \u0111\u1ecba ch\u1ec9 email c\u1ee7a qu\u1ea3n tr\u1ecb vi\u00ean (ho\u1eb7c c\u1ee7a ng\u01b0\u1eddi d\u00f9ng n\u1ebfu c\u1ea7n g\u1eedi th\u00f4ng tin qua email)<\/li>\n\n\n\n
            • Group<\/strong>: Ch\u1ecdn nh\u00f3m SSLVPN-Users<\/strong> \u0111\u00e3 t\u1ea1o \u1edf b\u01b0\u1edbc tr\u01b0\u1edbc
              \u2192 Nh\u1ea5n Save<\/strong> \u0111\u1ec3 ho\u00e0n t\u1ea5t t\u1ea1o user.<\/li>\n<\/ul>\n\n\n
              \n
              \"\"<\/figure>\n<\/div>\n\n\n

              2.4 – C\u1ea5u h\u00ecnh SSL VPN Remote access<\/strong>:<\/strong><\/span><\/h2><\/div><\/div><\/div>\n\n\n\n

              2.4.1 – C\u1ea5u h\u00ecnh SSL VPN Policy:<\/strong><\/span><\/h3><\/div><\/div><\/div>\n\n\n\n
                <\/ul>\n\n\n\n
                  \n
                • V\u00e0o menu Remote access VPN<\/strong> \u2192 ch\u1ecdn tab SSL VPN<\/strong> \u2192 nh\u1ea5n Add<\/strong> <\/strong>\u2192 nh\u1ea5n Configure<\/strong> manually<\/strong><\/li>\n<\/ul>\n\n\n
                  \n
                  \"\"<\/figure>\n<\/div>\n\n\n
                    \n
                  • Name<\/strong>: \u0110\u1eb7t t\u00ean cho c\u1ea5u h\u00ecnh SSL VPN (v\u00ed d\u1ee5: SSLVPN-IT)<\/li>\n\n\n\n
                  • Policy members<\/strong>: Ch\u1ecdn user<\/strong> ho\u1eb7c group<\/strong> m\u00e0 b\u1ea1n \u0111\u00e3 t\u1ea1o tr\u01b0\u1edbc \u0111\u00f3 (v\u00ed d\u1ee5: vpnuser01 ho\u1eb7c SSLVPN-Users)<\/li>\n\n\n\n
                  • Use as default gateway:<\/strong>\n
                      \n
                    • B\u1eadt<\/strong> n\u1ebfu b\u1ea1n mu\u1ed1n t\u1ea5t c\u1ea3 l\u01b0u l\u01b0\u1ee3ng<\/em> c\u1ee7a client \u0111i qua firewall (full tunnel).<\/li>\n\n\n\n
                    • Kh\u00f4ng b\u1eadt<\/strong> n\u1ebfu b\u1ea1n ch\u1ec9 mu\u1ed1n l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp n\u1ed9i b\u1ed9<\/em> \u0111i qua VPN (split tunnel).<\/li>\n<\/ul>\n<\/li>\n\n\n\n
                    • Permitted network resources (IPv4)<\/strong>: Ch\u1ecdn c\u00e1c d\u1ea3i m\u1ea1ng n\u1ed9i b\u1ed9 (LAN) m\u00e0 b\u1ea1n mu\u1ed1n c\u1ea5p quy\u1ec1n truy c\u1eadp cho ng\u01b0\u1eddi d\u00f9ng VPN (v\u00ed d\u1ee5: 10.10.10.0\/24)
                      \u2192 Nh\u1ea5n Apply<\/strong> \u0111\u1ec3 l\u01b0u c\u1ea5u h\u00ecnh.<\/li>\n<\/ul>\n\n\n
                      \n
                      \"\"<\/figure>\n<\/div>\n\n\n

                      T\u1ea1i menu Remote access VPN<\/strong>, ch\u1ecdn m\u1ee5c SSL VPN global settings<\/strong>.<\/strong><\/p>\n\n\n

                      \n
                      \"\"<\/figure>\n<\/div>\n\n\n

                      2.4.2 – C\u1ea5u h\u00ecnh SSL VPN Global Settings \u2013 C\u00e1c m\u1ee5c c\u1ea7n ch\u00fa \u00fd<\/strong>:<\/strong><\/span><\/h3><\/div><\/div><\/div>\n\n\n\n
                        \n
                      • Protocol<\/strong>: Ch\u1ecdn UDP<\/strong> \u0111\u1ec3 c\u00f3 hi\u1ec7u su\u1ea5t t\u1ed1t h\u01a1n.<\/li>\n\n\n\n
                      • SSL server certificate<\/strong>: Gi\u1eef nguy\u00ean ApplianceCertificate<\/strong> (ch\u1ee9ng ch\u1ec9 m\u1eb7c \u0111\u1ecbnh).<\/li>\n\n\n\n
                      • Override hostname<\/strong>: Nh\u1eadp \u0111\u1ecba ch\u1ec9 IP WAN<\/strong> ho\u1eb7c t\u00ean mi\u1ec1n<\/strong> m\u00e0 ng\u01b0\u1eddi d\u00f9ng VPN s\u1ebd k\u1ebft n\u1ed1i t\u1edbi (v\u00ed d\u1ee5: 123.20.173.178)<\/li>\n\n\n\n
                      • Port<\/strong>: \u0110\u1ec3 m\u1eb7c \u0111\u1ecbnh l\u00e0 8443<\/strong> ho\u1eb7c thay \u0111\u1ed5i n\u1ebfu c\u00f3 y\u00eau c\u1ea7u ri\u00eang.<\/li>\n\n\n\n
                      • Assign IPv4 addresses<\/strong>: Nh\u1eadp d\u1ea3i IP c\u1ea5p ph\u00e1t cho client VPN (v\u00ed d\u1ee5: 10.121.10.0\/24).<\/li>\n\n\n\n
                      • IPv4 DNS<\/strong>: N\u00ean c\u1ea5u h\u00ecnh DNS nh\u01b0 8.8.8.8<\/strong> v\u00e0 1.1.1.1<\/strong> \u0111\u1ec3 client c\u00f3 th\u1ec3 ph\u00e2n gi\u1ea3i t\u00ean mi\u1ec1n khi k\u1ebft n\u1ed1i VPN.<\/li>\n\n\n\n
                      • Disconnect dead peer after<\/strong>: C\u00f3 th\u1ec3 \u0111\u1eb7t l\u00e0 180 gi\u00e2y<\/strong> \u0111\u1ec3 t\u1ef1 \u0111\u1ed9ng ng\u1eaft k\u1ebft n\u1ed1i khi client kh\u00f4ng ph\u1ea3n h\u1ed3i.<\/li>\n\n\n\n
                      • Disconnect idle peer after<\/strong>: (<\/em>c\u00f3 th\u1ec3 c\u1ea5u h\u00ecnh th\u1eddi gian ng\u1eaft n\u1ebfu ng\u01b0\u1eddi d\u00f9ng kh\u00f4ng ho\u1ea1t \u0111\u1ed9ng \u2013 n\u00ean \u0111\u1ec3 tr\u1ed1ng n\u1ebfu kh\u00f4ng gi\u1edbi h\u1ea1n)<\/em> \u2192 Nh\u1ea5n Apply<\/strong> \u0111\u1ec3 l\u01b0u c\u1ea5u h\u00ecnh.<\/li>\n<\/ul>\n\n\n
                        \n
                        \"\"<\/figure>\n<\/div>\n\n\n

                        2.5 – T\u1ea1o firewall Rule cho ph\u00e9p truy c\u1eadp t\u1eeb VPN v\u00e0o v\u00f9ng LAN:<\/strong><\/span><\/h2><\/div><\/div><\/div>\n\n\n\n

                        2.5.1 – T\u1ea1o Firewall Rule cho ph\u00e9p truy c\u1eadp gi\u1eefa VPN v\u00e0 LAN:<\/strong><\/span><\/h3><\/div><\/div><\/div>\n\n\n\n
                          <\/ul>\n\n\n\n
                            \n
                          • V\u00e0o Rules and Policies<\/strong> \u2192 ch\u1ecdn tab Firewall Rules<\/strong><\/li>\n\n\n\n
                          • Nh\u1ea5n Add firewall rule<\/strong> \u2192 ch\u1ecdn New Rule<\/strong><\/li>\n\n\n\n
                          • C\u1ea5u h\u00ecnh c\u00e1c th\u00f4ng s\u1ed1 sau:<\/li>\n<\/ul>\n\n\n\n
                              \n
                            1. <\/li>\n<\/ol>\n\n\n\n
                              M\u1ee5c c\u1ea5u h\u00ecnh<\/strong><\/td>Gi\u00e1 tr\u1ecb \u0111\u1ec1 xu\u1ea5t<\/strong><\/td><\/tr><\/thead>
                              Rule Status<\/strong><\/td>ON<\/td><\/tr>
                              Rule name<\/strong><\/td>SSLVPN_TO_SERVER (\u0111\u1eb7t t\u00ean d\u1ec5 nh\u1eadn bi\u1ebft)<\/em><\/td><\/tr>
                              Action<\/strong><\/td>Accept<\/td><\/tr>
                              Rule Position<\/strong><\/td>Top (\u01b0u ti\u00ean cao nh\u1ea5t)<\/em><\/td><\/tr>
                              Rule Group<\/strong><\/td>None<\/td><\/tr>
                              Log firewall traffic<\/strong><\/td>T\u00edch ch\u1ecdn<\/strong> \u0111\u1ec3 ghi log<\/td><\/tr>
                              Source zones<\/strong><\/td>LAN v\u00e0 VPN<\/td><\/tr>
                              Source networks and devices<\/strong><\/td>SSL VPN REMOTE v\u00e0 10.10.10.0\/24<\/td><\/tr>
                              During scheduled time<\/strong><\/td>All the time<\/td><\/tr>
                              Destination zones<\/strong><\/td>LAN v\u00e0 VPN<\/td><\/tr>
                              Destination networks<\/strong><\/td>SSL VPN REMOTE v\u00e0 10.10.10.0\/24<\/td><\/tr>
                              Services<\/strong><\/td>Any (ho\u1eb7c gi\u1edbi h\u1ea1n theo nhu c\u1ea7u b\u1ea3o m\u1eadt)<\/em><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n
                                \n
                              • Nh\u1ea5n Save<\/strong> \u0111\u1ec3 l\u01b0u rule.<\/li>\n<\/ul>\n\n\n
                                \n
                                \"\"<\/figure>\n<\/div>\n\n\n
                                  \n
                                • <\/li>\n<\/ul>\n\n\n\n

                                  2.5.2 – C\u00e0i \u0111\u1eb7t VPN Client tr\u00ean m\u00e1y t\u00ednh ng\u01b0\u1eddi d\u00f9ng<\/strong>:<\/strong><\/span><\/h3><\/div><\/div><\/div>\n\n\n\n
                                    \n
                                  • Truy c\u1eadp VPN Portal<\/strong> b\u1eb1ng c\u00e1ch m\u1edf tr\u00ecnh duy\u1ec7t v\u00e0 truy c\u1eadp \u0111\u1ecba ch\u1ec9: https:\/\/<WAN-IP ho\u1eb7c t\u00ean mi\u1ec1n >:445<\/li>\n\n\n\n
                                  • \u0110\u0103ng nh\u1eadp b\u1eb1ng t\u00e0i kho\u1ea3n VPN<\/strong> m\u00e0 b\u1ea1n \u0111\u00e3 t\u1ea1o tr\u01b0\u1edbc \u0111\u00f3.<\/li>\n<\/ul>\n\n\n\n
                                    \"\"<\/figure>\n\n\n\n

                                    Nh\u1ea5n Download for Windows<\/strong> trong m\u1ee5c Sophos Connect client<\/strong> \u0111\u1ec3 t\u1ea3i file c\u00e0i \u0111\u1eb7t ph\u1ea7n m\u1ec1m.
                                    Sau \u0111\u00f3, nh\u1ea5n Download for Windows, macOS, Linux<\/strong> trong m\u1ee5c VPN configuration<\/strong> \u0111\u1ec3 t\u1ea3i file c\u1ea5u h\u00ecnh SSL VPN.<\/p>\n\n\n

                                    \n
                                    \"\"<\/figure>\n<\/div>\n\n\n

                                    2.6 – C\u00e0i \u0111\u1eb7t ph\u1ea7n m\u1ec1m Sophos Connect:<\/strong><\/span><\/h2><\/div><\/div><\/div>\n\n\n\n
                                      \n
                                    • Ch\u1ea1y file c\u00e0i \u0111\u1eb7t SophosConnect_<version>.exe<\/strong> v\u1eeba t\u1ea3i v\u1ec1.<\/li>\n\n\n\n
                                    • T\u1ea1i m\u00e0n h\u00ecnh c\u00e0i \u0111\u1eb7t, tick ch\u1ecdn \u00f4:
                                      \u201cI accept the Sophos End User License Agreement and acknowledge the Sophos Privacy Policy\u201d<\/strong><\/li>\n\n\n\n
                                    • Nh\u1ea5n Install<\/strong> \u0111\u1ec3 b\u1eaft \u0111\u1ea7u c\u00e0i \u0111\u1eb7t.<\/li>\n\n\n\n
                                    • Ch\u1edd qu\u00e1 tr\u00ecnh c\u00e0i \u0111\u1eb7t ho\u00e0n t\u1ea5t, sau \u0111\u00f3 nh\u1ea5n Finish<\/strong>.<\/li>\n<\/ul>\n\n\n\n
                                      \"\"<\/figure>\n\n\n\n

                                      2.7 – Import c\u1ea5u h\u00ecnh VPN v\u00e0o Sophos Connect:<\/strong><\/span><\/h2><\/div><\/div><\/div>\n\n\n\n
                                        \n
                                      • M\u1edf ph\u1ea7n m\u1ec1m Sophos Connect<\/strong> sau khi c\u00e0i \u0111\u1eb7t.<\/li>\n\n\n\n
                                      • T\u1ea1i giao di\u1ec7n ch\u00ednh, nh\u1ea5n Import connection<\/strong>.<\/li>\n\n\n\n
                                      • Ch\u1ecdn file c\u1ea5u h\u00ecnh sslvpn-vpnuser01-client-config.ovpn<\/strong> <\/strong>\u0111\u00e3 t\u1ea3i tr\u01b0\u1edbc \u0111\u00f3 t\u1eeb VPN Portal.<\/li>\n\n\n\n
                                      • Sau khi import th\u00e0nh c\u00f4ng, k\u1ebft n\u1ed1i VPN s\u1ebd hi\u1ec3n th\u1ecb tr\u00ean danh s\u00e1ch.<\/li>\n<\/ul>\n\n\n
                                        \n
                                        \"\"<\/figure>\n<\/div>","protected":false},"excerpt":{"rendered":"

                                        SSL VPN Client to Site l\u00e0 m\u1ed9t ph\u01b0\u01a1ng th\u1ee9c k\u1ebft n\u1ed1i an to\u00e0n cho ph\u00e9p ng\u01b0\u1eddi d\u00f9ng t\u1eeb xa truy c\u1eadp v\u00e0o m\u1ea1ng n\u1ed9i b\u1ed9 doanh nghi\u1ec7p th\u00f4ng qua Internet b\u1eb1ng c\u00e1ch s\u1eed d\u1ee5ng ph\u1ea7n m\u1ec1m VPN client. V\u1edbi SSL VPN, d\u1eef li\u1ec7u \u0111\u01b0\u1ee3c m\u00e3 h\u00f3a qua giao th\u1ee9c SSL\/TLS gi\u00fap \u0111\u1ea3m b\u1ea3o t\u00ednh b\u1ea3o […]<\/p>\n","protected":false},"author":2,"featured_media":24113,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_eb_attr":"","ocean_post_layout":"","ocean_both_sidebars_style":"","ocean_both_sidebars_content_width":0,"ocean_both_sidebars_sidebars_width":0,"ocean_sidebar":"","ocean_second_sidebar":"","ocean_disable_margins":"enable","ocean_add_body_class":"","ocean_shortcode_before_top_bar":"","ocean_shortcode_after_top_bar":"","ocean_shortcode_before_header":"","ocean_shortcode_after_header":"","ocean_has_shortcode":"","ocean_shortcode_after_title":"","ocean_shortcode_before_footer_widgets":"","ocean_shortcode_after_footer_widgets":"","ocean_shortcode_before_footer_bottom":"","ocean_shortcode_after_footer_bottom":"","ocean_display_top_bar":"default","ocean_display_header":"default","ocean_header_style":"","ocean_center_header_left_menu":"","ocean_custom_header_template":"","ocean_custom_logo":0,"ocean_custom_retina_logo":0,"ocean_custom_logo_max_width":0,"ocean_custom_logo_tablet_max_width":0,"ocean_custom_logo_mobile_max_width":0,"ocean_custom_logo_max_height":0,"ocean_custom_logo_tablet_max_height":0,"ocean_custom_logo_mobile_max_height":0,"ocean_header_custom_menu":"","ocean_menu_typo_font_family":"","ocean_menu_typo_font_subset":"","ocean_menu_typo_font_size":0,"ocean_menu_typo_font_size_tablet":0,"ocean_menu_typo_font_size_mobile":0,"ocean_menu_typo_font_size_unit":"px","ocean_menu_typo_font_weight":"","ocean_menu_typo_font_weight_tablet":"","ocean_menu_typo_font_weight_mobile":"","ocean_menu_typo_transform":"","ocean_menu_typo_transform_tablet":"","ocean_menu_typo_transform_mobile":"","ocean_menu_typo_line_height":0,"ocean_menu_typo_line_height_tablet":0,"ocean_menu_typo_line_height_mobile":0,"ocean_menu_typo_line_height_unit":"","ocean_menu_typo_spacing":0,"ocean_menu_typo_spacing_tablet":0,"ocean_menu_typo_spacing_mobile":0,"ocean_menu_typo_spacing_unit":"","ocean_menu_link_color":"","ocean_menu_link_color_hover":"","ocean_menu_link_color_active":"","ocean_menu_link_background":"","ocean_menu_link_hover_background":"","ocean_menu_link_active_background":"","ocean_menu_social_links_bg":"","ocean_menu_social_hover_links_bg":"","ocean_menu_social_links_color":"","ocean_menu_social_hover_links_color":"","ocean_disable_title":"default","ocean_disable_heading":"default","ocean_post_title":"","ocean_post_subheading":"","ocean_post_title_style":"","ocean_post_title_background_color":"","ocean_post_title_background":0,"ocean_post_title_bg_image_position":"","ocean_post_title_bg_image_attachment":"","ocean_post_title_bg_image_repeat":"","ocean_post_title_bg_image_size":"","ocean_post_title_height":0,"ocean_post_title_bg_overlay":0.5,"ocean_post_title_bg_overlay_color":"","ocean_disable_breadcrumbs":"default","ocean_breadcrumbs_color":"","ocean_breadcrumbs_separator_color":"","ocean_breadcrumbs_links_color":"","ocean_breadcrumbs_links_hover_color":"","ocean_display_footer_widgets":"default","ocean_display_footer_bottom":"default","ocean_custom_footer_template":"","ocean_post_oembed":"","ocean_post_self_hosted_media":"","ocean_post_video_embed":"","ocean_link_format":"","ocean_link_format_target":"self","ocean_quote_format":"","ocean_quote_format_link":"post","ocean_gallery_link_images":"on","ocean_gallery_id":[],"footnotes":""},"categories":[617,70,618],"tags":[334],"class_list":["post-23515","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-case-study-thuc-te","category-firewall","category-huong-dan","tag-sophos-firewall","entry","has-media"],"_links":{"self":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/23515","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/comments?post=23515"}],"version-history":[{"count":1,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/23515\/revisions"}],"predecessor-version":[{"id":25590,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/posts\/23515\/revisions\/25590"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/media\/24113"}],"wp:attachment":[{"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/media?parent=23515"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/categories?post=23515"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vacif.com\/en\/wp-json\/wp\/v2\/tags?post=23515"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}