Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 40 subscribers
  • Views 4073 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Connect VPN - Accessing Site to Site resources as a remote user

Benjamin Cox

Hope someone can advise on this,

 

I have an XG FW and have set up the sophos connect client VPN which seems to work perfectly to allow remote users access to the network, however, i have resouces on another site that can be accessed from my main site but not by remote users using sophos connect. how can I allow remote SC users to access this as if they are on the network?

 

Main site 10.0.0.0/22 ,  branch ipsec site to site 10.1.0.0/22, Cloud hosted subnet connected via ipsec (where we have an application hosted 172.20.0.0/24 (users on the main site and branch site can both access network shares on one another and also the cloud hosted site) my users access the main site (10.0.0.0/22 via SC but are ONLY able to access resources on the 10.0.0.0/22 subnet - i have tinkered with rules to no avail (and noticed in SSL VPN theres a "remote networks" option which i think i need to locate an equivalent of for SC?) 

Any advice here would be massively appreciated.



This thread was automatically locked due to age.
Parents
  • 0

    Hi  

    As per my understanding, your requirement is to access the remote location resources through Sophos connect client user and the Remote site is connected with the Main site via Site to Site VPN.

    Sophos Connect Client >> Main Site >> IPsec Tunnel >> Remote Site resources.

    You may try below configuration steps, it may help.

    1. Please add the IP address of the Sophos Connect client in the Local Subnet of the Main site IPsec VPN configuration and in the Remote Subnet of the Remote Site IPsec VPN configuration

    2. Create a VPN to VPN zone firewall rule and verify, if you are able to access 

    Regards,

    Keyur
    Community Support Engineer | Sophos Support
    Sophos Support VideosKnowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link

Reply
  • 0

    Hi  

    As per my understanding, your requirement is to access the remote location resources through Sophos connect client user and the Remote site is connected with the Main site via Site to Site VPN.

    Sophos Connect Client >> Main Site >> IPsec Tunnel >> Remote Site resources.

    You may try below configuration steps, it may help.

    1. Please add the IP address of the Sophos Connect client in the Local Subnet of the Main site IPsec VPN configuration and in the Remote Subnet of the Remote Site IPsec VPN configuration

    2. Create a VPN to VPN zone firewall rule and verify, if you are able to access 

    Regards,

    Keyur
    Community Support Engineer | Sophos Support
    Sophos Support VideosKnowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link

Children
Unfiltered HTML