Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Sophos Firewall

Discussions Crear enrutamiento entre dos VPN

Sophos Firewall requires membership for participation - click to join

Thread Info

State Suggested Answer
Locked Locked
Replies 4 replies
Answers 1 answer
Subscribers 41 subscribers
Views 9980 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Crear enrutamiento entre dos VPN

Lluis Bigordà 7 months ago

Buenas,

necesito ayuda, porque no consigo por mis medios..

La SubredLocal la llamaremos Subred1

Tengo un Sophos XG, que esta conectado a otro host a través de una IPsec "Interfaz de Tunel", la llamaremos Subred2.

Luego tengo usuarios que se conectan individualmente a traves de una VPN SSL Subred3.

Los usuarios externos que se conectan a través de la VPN SL (Subred3), pueden acceder a la red interna de la empresa (SubRed1)

Los usuarios que están en la red interna (SubRed1), pueden acceder a la red remota del Interfaz Túnel (SubRed2)

Pero el problema que tengo, es que los usuarios de SubRed3, no acceden a la SubRed2 y tengo una regla que les permite conectar a todas entre ellas.

Me falta configurar el enrutamiento, pero no lo consigo..

Gracias.

This thread was automatically locked due to age.

Top Replies

BAD 7 months ago +1 suggested

Hi, Maybe this KB can help you: https://support.sophos.com/support/s/article/KB-000037043?language=en_US Best regards.

Parents

0 kerobra 7 months ago

I hope I understood your problem right with google translate.
Is the VPN-connected network "Subred2" part of the allowed networks in the SSLVPN configuration site?
The firewall rule for it has to be VPN to VPN zone to make it work.

AND (I would expect that is missing) does the remote firewall have a routing entry to the tunnel interface for the SSLVPN network of your local firewall?

Regards,

Kevin

Sophos CE/CA (XG, UTM, Central Endpoint)
Gold Partner
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 kerobra 7 months ago

I hope I understood your problem right with google translate.
Is the VPN-connected network "Subred2" part of the allowed networks in the SSLVPN configuration site?
The firewall rule for it has to be VPN to VPN zone to make it work.

AND (I would expect that is missing) does the remote firewall have a routing entry to the tunnel interface for the SSLVPN network of your local firewall?

Regards,

Kevin

Sophos CE/CA (XG, UTM, Central Endpoint)
Gold Partner
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Lluis Bigordà 7 months ago in reply to kerobra

yes, the Subnet2 is in to configuration de VPNSSL.

The rule, is VPN and LAN to VPN and LAN.

The last question, d'ont have information for the status the remote firewall.
Cancel
Vote Up 0 Vote Down

Cancel