Configuring VPN Remote Access for the first time on your Sophos XG Firewall? Check out this useful Community post!
Advisory: Sophos XG Firewall - Antivirus service stopped due to failed pattern update. Please visit this KBA for the latest updates
We'd love to hear about it! Click here to go to the product suggestion community
Some of you may be setting up VPN remote access on the Sophos UTM for the first time. So we wanted ensure that everyone was aware of the great support content available to reference.
Good idea, Flo!
Another issue to consider for Remote Access is bandwidth. If your Down/Up is 200/25, you might want to change to 100/100 for the duration of Social Distancing requiring everyone to work from home where possible.
With the new Sophos Connect IPsec client, everyone should consider that as one of two first choices.
Most of my clients are configured with the SSL VPN using UDP (port 1443 is my preference) instead of TCP in order to remove the overhead of TCP with so many remote users. Also, turn off compression if you find that too many users overload the UTM's CPU.
The Sophos Connect client is well documented with KnowledgeBase articles. Although they're aimed at the XG, the concepts are the same.
I got the IPsec client off my lab XG, but there must be a way to download it from the Sophos site - anybody?
Cheers - Bob
In reply to BAlfson:
Thanks for sharing those great points!
In regards to the Sophos Connect IPsec client being made available outside the XG, stay tuned! This is something that's being planned for later this year.
In reply to FloSupport:
They sneaked the download onto the UTM Support Downloads page - all the way at the bottom. The instructions are in Sophos UTM & Sophos Connect client configuration.