This article describes how to configure SNAT to allow Remote Access SSL VPN traffic over existing IPsec tunnel without modifying the IPSEC tunnel.
Applies to the following Sophos products and versions Sophos UTM
In this scenario, it is assumed that the SSL VPN profile is already created to access the local network of the UTM. Please see the article Sophos UTM: Remote Access via SSL and VPN - Configuration Guides on how to configure Remote Access SSL VPN.
The following are the required configurations on the UTM at the local site where the SSL VPN client is connecting to:
If you've spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article. This is invaluable to us to ensure that we continually strive to give our customers the best information possible.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.