Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 40 subscribers
  • Views 1077 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Enable SSL VPN and Internal Exposted Host

Chris K

Hi,

I have an internal IP exposted to the public IP and this also works like it should. External traffic is translated to that host and you can access that host from the Internet.

Now I wanted to add a SSL VPN Connection, made a firewall rule, a policy, a user, a local subnet, etc - but I am still not able to connect to the Sophos via VPN.

How can I realize both things?



This thread was automatically locked due to age.
  • 0

    Do you have just 1 public IP or do you have more?
    In case you have only 1 and are using DNAT to forward port 443 to the internal server you could change the port used for SSL VPN to a different port, or even better use UDP for SSL-VPN instead of TCP which will also make your VPN experience better (faster).

    If you have more public IP-addresses, you can assign 1 to the DNAT and the other to SSL VPN.

    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Unfiltered HTML