Hi everyone
Error Description:
Firewall: Sophos XG230 cluster
Firmware: SFOS 18.5.3 MR-3-Build408
VPN: L2TP (currently with psk) | AES256 & SHA2 256 (1 & 2) / DH14 (1) / ECP256 (2)
We use Windows' built-in VPN via L2TP/IPsec via our UTM cluster (SG230) for all notebooks.
Add-VpnConnection -Name "VPN" -ServerAddress "XXX" -TunnelType "L2tp" -EncryptionLevel "Required" -
AuthenticationMethod MSChapv2 -L2tpPsk 'XXX' -AllUserConnection -Force -PassThru
Client authentication runs via RADIUS.
With the Windows solution, we can set up a VPN tunnel and synchronize profile data directly upon registration (SBL). The tunnel is disconnected again during the logoff process. This type of VPN is particularly important to us. With the new XG we now have nothing but problems and cannot find a solution. Sophos support has already given up. The user connects from the home office via VPN. The connection is stable and access to all shared resources is possible.
Now, when two clients from the same local network connect to the same WAN IP, only one client can communicate through the tunnel (LAN & WAN) at a time. The error occurs with both split tunneling and full tunneling.
The connection is stable, but network access is flapping!
With our UTM (SG230) everything works wonderfully.
Our employees are often in Berlin for conferences and all connect to our XG via the local WAN connection and can then only work to a limited extent because the VPN tunnels flap. Is there anyone with a similar experience or a solution to the problem?
Greetings from Germany
RZ
PS: Sorry for the bad English
This thread was automatically locked due to age.