Dears,
I have two questions:
The first is I need to make a virtual IP for server (give it two IP and appears with one IP ) How to do this with sophos XG?
The Second I have an issue with ssl vpn, by applying ssl vpn it's working good with windows and linux but in linux for all versions it ca n't update dns address after ssl vpn is connected How I can solve this issue?
Thanks and regards
Hello mohamed zedan,For NAT refer the following article: https://docs.sophos.com/nsg/sophos-firewall/18.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/RulesAndPolicies/NATRules/index.html#firewall-rules…
Do you mean SNAT?
Mit freundlichem Gruß, best regards from Germany,
Philipp Rusch
New Vision GmbH, GermanySophos Silver-Partner
If a post solves your question please use the 'Verify Answer' button.
Hi, Approximately
Hello mohamed zedan,For NAT refer the following article: https://docs.sophos.com/nsg/sophos-firewall/18.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/RulesAndPolicies/NATRules/index.html#firewall-rules-and-nat-rulesFor SSL VPN - DNS part
Administration > Device Access > Turn on VPN DNS check box
VPN > Show VPN Settings[v18] /SSL VPN Global settings [v19] > Set IPv4 DNS to local address (XX.XX.xxx.xxx) and domain name to internal DNS name
VPN > SSL VPN > Permitted Network Resources (IPv4) > Add internal network object
Firewall > add VPN to LAN access
Thanks & Regards,
Vivek Jagad | Technical Account Manager 3 | Cyber Security EvolvedSophos Community | Product Documentation | Sophos Techvids | SMSIf a post solves your question please use the 'Verify Answer' button.
Hi Vivek-jagad,
At this image i need to access 20.1.1.25 and redirects to Two web servers {172.16.3.10 or 172.16.3.11}
Hello mohamed zedan,Can you show us the screenshot of the DNAT rule created for this web servers ?
Why the original service is set to "any" this is not a best practice, please mention the service explicit used by the internal web server.
443
okay, you can add https as a service and ensure the rule is on the top.
Okay,
I will do it immediately