Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 38 subscribers
  • Views 1208 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG 115 / SFOS 18.0.3 MR-3 / Web admin access working locally and through WAN access but not through VPN

armarzook

Dear Community,

The subject itself tells the whole story in brief.

I can locally access the web admin access and also through WAN (public) without any issues,

VPN is working fine and other web server sites published in master site are accessible without a glitch.

Kindly help me to rectify this.

Sophos support advised to change the MTU on the WAN port of XG firewall to which nothing happened.

Looking Forward,

Mohamed Marzook.



Edited TAGs
[edited by: emmosophos at 6:46 PM (GMT -7) on 3 Jun 2021]
Parents
  • 0

    Hi Mohamed,

    please check your web admin security settings at SYSTEM > Adminstration > Device access.

    Regards,

    Intrusus
    Sophos Certified Engineer | Sophos Certified Technician

    private lab:
    XG firewall with SFOS 18.0.3 MR-3
    Intercept X Advanced (for Server) with EDR EAP latest
    If a post solves your question use the 'Verify Answer' link

  • 0 in reply to intrusus

    Dear,

    FYI, Of course the same is checked and still not working.

  • 0 in reply to armarzook

    Hi,

    also check the following then:

    • Check that the SSL VPN port and the admin web portal port don't interfere 
    • Create a firewall rule from VPN to LAN
    • If SSL VPN is configured in Split mode, make sure you have added Sophos XG LAN IP in SSL VPN (Remote Access) > Permitted Network Resources 
    • Access Sophos XG through your LAN IP
    • Check the traffic Flow on XG for request for port 4444 > Use Packet capture and see if the traffic is reachable to XG and what action XG has taken.
    • Compress SSL VPN Traffic should be disabled. 

    Intrusus
    Sophos Certified Engineer | Sophos Certified Technician

    private lab:
    XG firewall with SFOS 18.0.3 MR-3
    Intercept X Advanced (for Server) with EDR EAP latest
    If a post solves your question use the 'Verify Answer' link

Reply
  • 0 in reply to armarzook

    Hi,

    also check the following then:

    • Check that the SSL VPN port and the admin web portal port don't interfere 
    • Create a firewall rule from VPN to LAN
    • If SSL VPN is configured in Split mode, make sure you have added Sophos XG LAN IP in SSL VPN (Remote Access) > Permitted Network Resources 
    • Access Sophos XG through your LAN IP
    • Check the traffic Flow on XG for request for port 4444 > Use Packet capture and see if the traffic is reachable to XG and what action XG has taken.
    • Compress SSL VPN Traffic should be disabled. 

    Intrusus
    Sophos Certified Engineer | Sophos Certified Technician

    private lab:
    XG firewall with SFOS 18.0.3 MR-3
    Intercept X Advanced (for Server) with EDR EAP latest
    If a post solves your question use the 'Verify Answer' link

Children
Unfiltered HTML