Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Issue with guest using Sonicwall Global VPN Client on our XG85w

Guest on our network has issues where his VPN is stuck on "Authenticating" when trying to connect to his company network. Anywhere outside our network (hotspot, his home, etc).

 

After doing some cursory research on Sonicwall's website (https://www.sonicwall.com/support/knowledge-base/ports-used-in-sonicwall-utm-appliance/170504777303884/), it looks like their VPN uses ports 500 and 4500 UDP, and I believe Sophos uses this too for it's IPSec VPN solution. We currently utilize SSL VPN for Sophos do I don't know if that is a conflict, but I wanted to know what I should look at into seeing if I can allow this Guest's VPN out to the WAN without conflicting with any of our services.



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi Scott Glines,

    Create a firewall rule LAN to WAN with source IP address of that guest user and do not apply any filter and put that rule on top, check if this resolves your issue? 

    Also run packet capture on source IP address of the user when trying to connect to the VPN. Navigate to Diagnostics > Packet capture and see what out interface that traffic is trying to go out? Please PM me with the screenshot of that packet capture. 

    Thanks,

     

Reply
  • FormerMember
    0 FormerMember

    Hi Scott Glines,

    Create a firewall rule LAN to WAN with source IP address of that guest user and do not apply any filter and put that rule on top, check if this resolves your issue? 

    Also run packet capture on source IP address of the user when trying to connect to the VPN. Navigate to Diagnostics > Packet capture and see what out interface that traffic is trying to go out? Please PM me with the screenshot of that packet capture. 

    Thanks,

     

Children
No Data