Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 40 subscribers
  • Views 1651 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Management access via IPSec VPN

EastCoastUser

I'm using the Home Firewall 20.0. I configured IPSec VPN to access devices in the home. I can access most devices, but not the Sophos firewall itself.

Although the VPN shows up as a zone, it does not show up as an interface (a "tunnel" interface, with an IP address that can be utilized or even configured). Therefore, I am trying to connect to the firewall using its LAN interface IP address. I can successfully ping this interface, and I have full access to other devices on this LAN subnet.

But when i try to access this IP address via HTTPS, it refuses the connection. 

Under Administration > Device Access, in the VPN row, I check all of the checkboxes (temporarily during testing). Still the firewall denies me HTTPS access.



This thread was automatically locked due to age.
Parents
  • 0

    Hi

    a better method to connect and with less hassles is to use Central. For home users it is free with limited features and 7 days of history.

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

     , do you have local/remote subnet as 'Any/Any' or it has traffic selectors  (some specific subnets) configured in the route based ipsec tunnel ?

    Is this your topology ? and you are trying to access SFOS1 UI from Windows node and expect it to go through rbvpn tunnel?

    SFOS1-----------rbvpn------SFOS2----LAN---Windows

    Have you enabled HTTPS on VPN zone (from UI - Administration - Device Access) on SFOS1 ?

Reply
  • 0 in reply to rfcat_vk

     , do you have local/remote subnet as 'Any/Any' or it has traffic selectors  (some specific subnets) configured in the route based ipsec tunnel ?

    Is this your topology ? and you are trying to access SFOS1 UI from Windows node and expect it to go through rbvpn tunnel?

    SFOS1-----------rbvpn------SFOS2----LAN---Windows

    Have you enabled HTTPS on VPN zone (from UI - Administration - Device Access) on SFOS1 ?

Children
No Data
Unfiltered HTML