Internal Webserver trought VPN

Hello Service Informatique2,

Thank you for reaching out to the community, you may add domain public IP to SSL VPN configuration and can push the route with the public IP for SSL VPN users by re-importing the SSL VPN configuration file to user system so users will be able to access the /images/cpe/logos and add VPN zone in the allow tab in WAF configuration.
Add a web server protection (WAF) rule - https://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/RulesAndPolicies/WebServerProtection/WAF/Rules/WAFRuleAdd/index.html

Hello Vivek Jagad, thank you for your quick answer.

My WAN IP are actually in my VPN SSL Configuration :

And in my WAF rules, all IPv4 are allowed to access to my website.

And finally, in my VPN configuration, I push my domain controler DNS and my local domain as you can see :

When I look to my route after connect my VPN, I have :

192.168.61.1 is my local router

10.81.234.5 is my SSL IP

When I tracert 1.1.1.1; all go trought the VPN SSL Tunnel

When I tracert the Website IP adress I have only Timeout

Thank you.

via public, but I need to access with the public IP of my customer because we want to filter some access with this particular IP

Then you do have a DNAT rule WAN to LAN in place for your website access right ? If Yes, then under the source zone add along with the WAN add the VPN zone too !!

actually all my Website trafic is going trough WAF rules. I have no DNAT rule.

But on my WAF rules; I have "ANY" in source zone.

and is the destination for the VPN allowed under the SSL VPN's permitted network ?

Hello, I have "Any" in Alowed Client Network in every Waf rule. I had my SSL pool IP, but still same issue...

Under the tunnel access, the option "Use as default gateway" enabled or disabled ? 

it's enabled

can you share the packet capture - Monitor traffic using Packet Capture Utility : https://support.sophos.com/support/s/article/KB-000035761?language=en_US

Helllo, sorry for delay of my answer;

I've captured traffic and here you can see my VPN trafic to the public IP of my website :

capture

looks that I have no firewall and nat rules matching this trafic.

Try to create another rule :

rule screnn

but nothing change

Links provided does not seem to be opening !!
Could you update us with the latest screenshots?

Links provided does not seem to be opening !!
Could you update us with the latest screenshots?