What configuration should be made on FortiGate to allow remote users to send external application data and access FTP resources through an SSUTLS connection?

To enable remote users to send external application data and access FTP resources through an SSUTLS connection, an SSL VPN tunnel is the appropriate configuration on FortiGate.

An SSL VPN provides a secure and encrypted connection for remote users to access network resources, which is crucial for ensuring that sensitive data is protected during transmission. Unlike traditional IPsec VPNs, SSL VPNs are particularly advantageous in scenarios where users might be connecting from locations with restrictive firewall rules or NAT (Network Address Translation) configurations, making it easier for them to establish a secure connection.

SSL VPNs also offer granular control over user access to applications and resources, allowing for specific configurations such as enabling FTP access over the established SSL connection. Since SSUTLS (Secure Socket User Transport Layer Security) refers specifically to the use of an SSL or TLS-based transport layer to secure the data being communicated, SSL VPN aligns perfectly with the requirement to secure external application data as well as facilitate FTP access.

In contrast, a VPN connection could refer to various types without specifying whether it is SSL or IPsec and might not deliver the specific capabilities required for accessing application data over SSL/TLS. IPsec tunnels, while providing security, do not inherently support the same level of ease for access through applications that