Thread Info
  • State Suggested Answer
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 38 subscribers
  • Views 310 views
  • Users 0 members are here
Options
Suggested

Enable SSL VPN and Internal Exposted Host

Chris K

Hi,

I have an internal IP exposted to the public IP and this also works like it should. External traffic is translated to that host and you can access that host from the Internet.

Now I wanted to add a SSL VPN Connection, made a firewall rule, a policy, a user, a local subnet, etc - but I am still not able to connect to the Sophos via VPN.

How can I realize both things?



Added TAGs
[edited by: Raphael Alganes at 2:11 PM (GMT -7) on 17 Apr 2024]
  • 0

    Do you have just 1 public IP or do you have more?
    In case you have only 1 and are using DNAT to forward port 443 to the internal server you could change the port used for SSL VPN to a different port, or even better use UDP for SSL-VPN instead of TCP which will also make your VPN experience better (faster).

    If you have more public IP-addresses, you can assign 1 to the DNAT and the other to SSL VPN.

    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Unfiltered HTML