Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 18 replies
  • Answers 1 answer
  • Subscribers 44 subscribers
  • Views 7385 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN Client can connect but no traffic is generated to VPN zone

Angelone

Hi all,

I was able to use SSL VPN properly with Sophos XG v19. Now I've upgraded to v20 and I'm experiencing issue with SSL VPN.

To setup the SSL VPN I followed this guide: https://techvids.sophos.com/watch/wtqMJE1La6TkFjAiaT2d3H

I draw a network scheme to better explain how the network is configured:

I'm using an iPhone with OpenVPN installed as a client. It can connect and authenticate properly, the OpenVPN iPhone app shows that XG assigned the IP 10.10.70.1

I've a firewall rule that allow traffic from VPN to DMZ,WAN and LAN:

In the firewall log I can't see any traffic generated through the VPN, traffic flows regularly into the XG on port 8443 (I've check with tcpdump ssh-ing into XG firewall).

I've also tried to attach a Linked NAT rule to Masquerade (MASQ) all traffic that comes from VPN zone. The client can't reach any DMZ hosts neither any internet host (I would like to use the VPN as the default gateway).

Can anyone help me to solve this issue?

Thanks in advance



This thread was automatically locked due to age.
Parents
  • 0

    Hello community,

    I'm facing the same issue as . After upgrading my Sophos XG Firewall to v20, my VPN SSL clients using the OpenVPN app on Android devicescan no longer communicate with the network.

    The VPN clients successfully authenticate and receive an IP address but cannot access network resources. No configuration changes were made on the clients or firewall after the upgrade.

    I've tried restarting the VPN service and OpenVPN app on the devices, but the issue persists.

    Could you please advise if there's a known configuration adjustment required for OpenVPN clients or the Sophos firewall after upgrading to v20?

    Any help would be greatly appreciated.

    Thanks in advance!

  • 0 in reply to DanielGM

    What's the OpenVPN version you are using ? Could you check if the below link from Lucar helps ?

  • 0 in reply to Giridhar Katti

    Hi  ,

    Yes the Lucar's link help me to understand and solve the issue. 

    Thanks,

Reply Children
No Data
Unfiltered HTML