Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 2 answers
  • Subscribers 3 subscribers
  • Views 13469 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

No internet access through L2TP VPN

ACL-Events

Hello Forum People,

I hope you can help me with that issue.

 

I have set up a remote access via L2TP/IPsec for two devices and both connect properly. I also have access to my internal network.

Unfortunately I couldnt get the internet access via VPN working yet.

Settings I made so far:

Firewall:

  • from L2TP Network to Internal Network and WAN IP (any service)
  • from L2TP Network to internet IPv4 / IPv6 (any service, logging enabled)
  • from Internal Network to L2TP Network

NAT

  • from L2TP Network to WAN 

Ping is going through, but I guess thats due to ICMP settings.

Devices are one IPhone and one MacbookPro, both configured by the user portal.

In the Firewall-Log I can see packets going out to public IP Adresses, but nothing blocked way back.

DNS isnt working either, L2TP Network is added in allowed networks.

 

Im runnig out of ideas, could anyone help?

Best Regards,

Arne

 



This thread was automatically locked due to age.
Parents
  • 0

    Hallo Arne and welcome to the UTM Community!

    The L2TP client contains the selection for this.  Check 'Use default gateway on remote network' behind the [Advanced] button in the [Properties] of IPv4 on the 'Networking' tab.  If you still don't get Internet, confirm that you have a Masq rule 'VPN Pool (L2TP) -> External'.  Also, you might want to add "VPN Pool (L2TP)" to 'Allowed Networks' in Web Filtering.

    Any better luck now?

    Cheers - Bob 

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0

    Hallo Arne and welcome to the UTM Community!

    The L2TP client contains the selection for this.  Check 'Use default gateway on remote network' behind the [Advanced] button in the [Properties] of IPv4 on the 'Networking' tab.  If you still don't get Internet, confirm that you have a Masq rule 'VPN Pool (L2TP) -> External'.  Also, you might want to add "VPN Pool (L2TP)" to 'Allowed Networks' in Web Filtering.

    Any better luck now?

    Cheers - Bob 

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML