This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Question about the Behavior of Site-to-Site VPN and Web Protection

Hi Folks,

I think I would find the Answer in the UTM Manual,

but if someone knows the Answer,

that would help very much -> I don't need to search then.

My Question is: if I create an VPN Tunnel (tun0) to eg. openvpn

for all the Traffic / surfing

would the Traffic still be scanned by the UTM (Anti Virus, IPS, ...)?

an other Thing (if it still would scanned) is -> how is the Best Way to realize that?

Regards Andy



This thread was automatically locked due to age.
  • Hallo Andy,

    The answer is yes, but please give us the definition of the tunnel you propose to create so that we can give you clear instructions.

    Cheers - Bob
    PS Moving this to the Web Protection forum.

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Hi Bob,

    thanks for answering and sorry for the late Reply, the Forum/System don't informed me that you've answered.

    I haven't created an VPN-Tunnel yet, I wanted to clarify the Behavior of Web-Filtering and VPN before.

    What VPN Provider, for Private Surfing, is suggested with the SG105?

    Andy

  • There's no client in WebAdmin for any VPN Provider, Andy.  The best you can do is to find a provider that lets you establish a site-to-site.  Either that, or you use a client in your PC.

    If you use a client in your PC, you can't use Web Protection.

    If you have a site-to-site, you can run all traffic through the tunnel by having "Internet IPv4" in 'Remote Networks'.  In that case, you can use Web Filtering in Transparent and/or Standard mode.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • BAlfson said:
    The best you can do is to find a provider that lets you establish a site-to-site

    can you suggest a VPN Site-to-Site Provider relating many Factors as Price, Throughput, ...?

    BAlfson said:
    Either that, or you use a client in your PC.

    I don't want this

  • "can you suggest a VPN Site-to-Site Provider relating many Factors as Price, Throughput, ...?"

    Please let us know what you learn from your search.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • BAlfson said:
    Please let us know what you learn from your search.

    Search?

    The Question was if you could suggest one?

  • Mein Kommentar bedeutet, dass ich nicht kann, Andy. [;)]

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • ah OK thanks

    although to write in English isn't Problematic for me, my Wife (Vietnamese) and I speak mainly English at Home.

     

    some other Thing:

    I don't get a Notification via Mail, on other Treads too