Disclaimer: This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment.
Table of Contents
Overview
This guide outlines troubleshooting suggestions when an SSL VPN user cannot access LAN resources behind the Sophos Firewall but another user in the same SSL VPN Group can do it successfully.
Note: First, follow this knowledge base to ensure you have the correct firewall rules configured.
Troubleshooting Suggestions - Windows O/S
Situation: If User A can connect but User B cannot - even though they belong to the same SSL VPN user group, the issue might be related to User B's local machine.
- Please open User B's SSL VPN client and confirm a successful connection.
- Once connected, right-click on the profile and select View Log
- Search for a similar log entry:
ROUTE: route addition failed using CreateIpForwardEntry: Access is denied. [status=5 if_index=3]
- If you see a similar entry - the issue may be that the computer is not allowing the current user to print the route to the local machine.
To fix this issue:
- Open Windows Explorer
- Search for SSL VPN
- Right-click and open file location
- Click compatibility
- Check Run the program as an adminstrator
- Select Apply and OK
Note: This is a security measure imposed by Microsoft, not OpenVPN.
Horizontal Lines, Overview, Grammar
[edited by: emmosophos at 12:33 AM (GMT -8) on 22 Nov 2023]