hi
i have currently a dnat for a local pbx in sophos xg firewall
from the wan, everything works fine. but when a user connects to vpn, he cannot reach the public ip, thus can't use the pbx. this public ip seats in the same FW as the vpn, same system.
what's the correct way to create nat/policy so that a user connected to the vpn, will still be able to transparently connect to the public ip even when connected to the vpn?
thank you
Hello lior me,
Thank you for reaching out to community, under the DNAT rule, also add the source zone as VPN along with the WAN zone and then check the status.
Between, are you using a split tunnel or full tunnel for the VPN ?
Thanks & Regards,
_______________________________________________________________
Vivek Jagad | Team Lead, Global Support & Services
Log a Support Case | Sophos Service Guide
Best Practices – Support Case
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
Can you provide a screenshot of the DNAT rule, and have you created the rule manually or you used "server access assistance" to create ?
And under the VPN allowed network is pbx internal server mentioned ?
Thanks & Regards,
_______________________________________________________________
Vivek Jagad | Team Lead, Global Support & Services
Log a Support Case | Sophos Service Guide
Best Practices – Support Case
Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.
