Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos SSL VPN XGS116

Hii 

I have configure SSL VPN; this works well, and clients can connect.. The issue is that we can only access or connect to the devices or nodes that's it's gateway is the firewall IP, we other sophos GW but VPN client cannot access these until we change the gw to the one that has the ssll vpn. 



This thread was automatically locked due to age.
Parents
  • It was said in another answer above, but check your routes.

    Every "other" gateway should have a route to the 10.81.234.0/24 network on the SSL Sophos firewall. Also those other firewalls should not have 10.81.234.0 configured locally otherwise traffic will never be able to get from this network to the firewall managing the SSL VPN.

    SSL-clients in their turn will need the subnets for the other networks in the tunnel (or tunnel all traffic (use as default gateway option)).

    Also the Sophos firewall with the SSL should have routes to the other firewalls subnets.


    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Reply
  • It was said in another answer above, but check your routes.

    Every "other" gateway should have a route to the 10.81.234.0/24 network on the SSL Sophos firewall. Also those other firewalls should not have 10.81.234.0 configured locally otherwise traffic will never be able to get from this network to the firewall managing the SSL VPN.

    SSL-clients in their turn will need the subnets for the other networks in the tunnel (or tunnel all traffic (use as default gateway option)).

    Also the Sophos firewall with the SSL should have routes to the other firewalls subnets.


    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Children