Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 40 subscribers
  • Views 10133 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

User portal not accessible to WAN

Yendor

Maybe I am missing something but users can not access the user portal from the WAN.

I thought it would be available by default via port 443 as long as the Device Access/ACL service was enabled for WAN.



This thread was automatically locked due to age.
Parents
  • 0

    Yendor,

    can you share the device access from Administration menu?

    Also check which port is User Portal using inside Administration > Device settings.

    Regards

  • 0 in reply to lferrara

    can you share the device access from Administration menu?

    Also check which port is User Portal using inside Administration > Device settings.

    443

     

    I have also tried 4443 and still nothing. I am able to access the user portal from the internal IP while local however I think when downloading the VPN settings from the user portal it does not get the right information and it uses the internal IP in the configs? is this correct?

  • 0 in reply to Yendor

    The XG is behind another router device?

    For the vpn, did you configure the dns/public ip in the ssl vpn settings under VPN menu?

  • 0 in reply to lferrara

    The XG is behind another router device? NO

    For the vpn, did you configure the dns/public ip in the ssl vpn settings under VPN menu? What do you mean by the DNS/Public IP?

     

    I followed the setup guide below and there was nothing said about DNS. Is this DNS for internal resolution?

     

    community.sophos.com/.../122769

     

    I'm trying to connect to the vpn on my mobile device using OpenVPN and I'm getting "Transport Error TCPv4 connect error on [public IP]:8443 Connection Refused

  • 0 in reply to Yendor

    I mean this section:

    Configuring advanced SSL VPN settings

    in the KB.

    Try to switch between TCP to UPD on the same TAB and try again.

    Regards

  • 0 in reply to lferrara

    PS: SSLVPN and User Portal can be used on the Same Interface / Port. 

    So you could switch both to 443. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    SO I figured out why my SSL VPN was not working. I did a  tcpdump and noticed that the port was being forwarded to my NAS via my DNAT rule. Im not sure why at this point however I know when I disable my DNAT runle my VPN connects.

     

    Anu IDEAS?  Would it have to do with the reverse proxy I set up on the Synology NAS to get the synology DSM login page working?

Reply
  • 0 in reply to LuCar Toni

    SO I figured out why my SSL VPN was not working. I did a  tcpdump and noticed that the port was being forwarded to my NAS via my DNAT rule. Im not sure why at this point however I know when I disable my DNAT runle my VPN connects.

     

    Anu IDEAS?  Would it have to do with the reverse proxy I set up on the Synology NAS to get the synology DSM login page working?

Children
Unfiltered HTML