Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Connect Client - disappearing SSL VPN connection

Hello,

I have read some forums about this issue but I have not been able to replicate the issue. I have also checked the KIL list.

I tried changing the networks, PC restarts, logging in with a different user.

The SSL VPN connection profile rarely disappears from Sophos connect client and I do not know what the issue is.

We use a provisioning file to distribute connections for users.

Sophos firmware: SFOS 19.5.3 MR-3-Build652
Sophos Connect version: 2.2.90.1104



This thread was automatically locked due to age.
Parents
  • I can confirm the problem with disappearing profiles in the Connect client. Mainly with imported provisioning files on notebooks, which change networks regularely. User profiles are not changed on these systems. Problem comes up in the first days of initial use of the Connect client and then goes away.

    It is still so rare that we cannot recognize a pattern. We are evaluating connecting domain joined devices with windows integrated L2TP instead of Connect client.

  • We also tried L2TP over IPSec but had to discard it. Since Sophos only supports IKEv1 here, at least in Germany with DS lite Internet connections that do not have a full IPv4 address, there are problems that no connection can be achieved (e.g. Vodafone Cable or Deutsche Glasfaster). IKEv2 would solve the problem but here the option for remote access is not supported and is only available for site-to-site connections. Where the problem is with allowing this for one and limiting it for remote access is not clear to me. There have been countless threads here over the years asking for IKEv2 for remote access. They prefer to refer people to ZTNA in order to make propably more profit.

  • That's true. In genereal there are no improvements regarding remote access since ?? With sophos connect the same, no update since ??, a lot of know issues and bugs with SSL VPN, provisioning and MFA.

  • Ok thats good to know. ZTNA is no solution for a domain joined device, which has to connect to an internal domain controller or similar. I think we will open a ticket at least for the disappearing profiles problem.

Reply Children