hello dear's
I have a problem connecting with Sophos SSL VPN
The connection worked fine when I connected to the internal network using Sophos Connect but I am unable to see the servers on the internal network
I checked all the settings and it turned out to be correctI created a new base for SSL VPNI removed Sophos Connect and re-installed it, but nothing new
#Does DNAT Rule have anything to do with this scenario or not?
Did you use the SSLVPN Wizard? This might help for the initial installation.
__________________________________________________________________________________________________________________
i already use it and the client connected successfully but can't acess my internal server's
Then try to check the packet capture for further details.
Packet capture on the firewall will indicate the problem.
If you do not see any kind of traffic: Its a client problem.
If you see traffic but only to the firewall: Firewall problem.
If you see traffic coming and going to the resource but no reply, its a server problem.
Hello Mahmoud,
what do you mean with "it worked"?
Did you upgrade your firewall?
Did you perhaps upgrade your client?
Mit freundlichem Gruß, best regards from Germany,
Philipp Rusch
New Vision GmbH, GermanySophos Silver-Partner
If a post solves your question please use the 'Verify Answer' button.
sophos connect client is working
already upgraded
download last version of client
Please check packet is hitting the firewall for tun0 under MONITOR & ANALYZE-->Diagnostics-->Packet Capture Click on configure Enter BPF string host 10.1.10.101 and proto ICMP
from SSH go to option 4 :
console>tcpdump 'host <destination IP> and proto ICMP
console>dr 'host <destination IP> and proto ICMP
Regards
"Sophos Partner: Infrassist Technologies Pvt Ltd".
What is your question for DNAT-rule about?
Does DNAT Rule conflict with SSL VPN
If you are redirecting the same port to another (internal) server, then : YES.
Show us your rules, please.