Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 43 subscribers
  • Views 7565 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Bridged mode ---> Passing trough VPN ?

Gioser

Hello 

I have an Ubiquiti Security Gateway router,  it has VPN lpt2 ipsec server letting the clients to access internal resources.

Of course I can connecto to the VPN, since the Ubiquity is handling that , but the XG105 (SFOS 17.5.0 GA)  in bridged mode is bloking the access to all the internal resources, 

The Firewall rules should not block anything, NAT is just doing MASQ.

All is in default from the Bridged mode initial setup. I just want to use IPS and AV.  

 

Any advice will be great !!

Thank you 



This thread was automatically locked due to age.
Parents
  • 0

    The setup documentation implies that bridged mode is completely transparent,  in the same way the Cyberoams were but it isn't true.  As stated above you do need to manually enter a firewall rule allowing all traffic from WAN to LAN.  Because in bridged/transparent mode the Sophos device is behind your regular firewall, this shouldn't cause any issues but does allow any rules you have in your own firewall for WAN access to the LAN to then work.

Reply
  • 0

    The setup documentation implies that bridged mode is completely transparent,  in the same way the Cyberoams were but it isn't true.  As stated above you do need to manually enter a firewall rule allowing all traffic from WAN to LAN.  Because in bridged/transparent mode the Sophos device is behind your regular firewall, this shouldn't cause any issues but does allow any rules you have in your own firewall for WAN access to the LAN to then work.

Children
Unfiltered HTML