SSL VPN Access

Hi, as said above, have you configured the SSL VPN pool inside the tunnel between branch office and head office? And also is het branch-office subnet included in het SSL VPN config?

Lastly you should also allow traffic from the branch office firewall so in branch office allow traffic from 10.242.2.0 subnet.

Dear Apijnappels, 

Thanks for your command, I have checked the above the SSL VPN pool is added inside the IPsec tunnel rule between the branch office and the head office. also, the head-branch office subnet is included in SSL VPN config under the tunnel access. but what I found strange when I checked the SSL VPN Claint log I see that the route is deleted see screenshot, please 

If you like we can make a remote session

Looks in the logs the routes are first deleted and then readded. Not sure why this happens, but as they are readded this should be good.

Have you also checked whether you have firewall rules in the branch office allowing traffic from SSL-pool to branch office LAN?

Looks in the logs the routes are first deleted and then readded. Not sure why this happens, but as they are readded this should be good.

Have you also checked whether you have firewall rules in the branch office allowing traffic from SSL-pool to branch office LAN?

The same SSL VPN pool subnet 10.242.2 I am using for UTM SLL Pool and it works in Branchoffice it means there should no firewall block in Branchoffice 

Not sure if I get you correctly, but do you have SSL-VPN configured in Branch office with same subnet 10.24.2.0/24 as you have in head office?

If so than that is the reason for the routing issue since in that case the branch office will not send traffic for 10.242.2.0/24 network back to head office.

No I used three dieffrent subnet Head office 192.168.9.x  branch office 192.168.132.x SSL VPN 10.242.2.x