Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 39 subscribers
  • Views 741 views
  • Users 0 members are here
Options
Suggested

WEBSER SERVER NOT ACCESS THROUGH VPN

SatyabrataB

hi,

we have webserver in LAN zone that server access through private IP address IN LAN zone.

issue-Right now user in china and access webserver through Vpn but in china vpn not connected only indian sim with roaming will work.how to access webserver from china

Thanks

SATYA



Added TAGs
[edited by: Raphael Alganes at 10:26 AM (GMT -7) on 27 Aug 2024]
Parents
  • 0

    Hello,

    You may create the DNAT rule for your web server and allow access.

    docs.sophos.com/.../index.html

    Mayur Makvana
    Technical Account Manager | Global Customer Experience
    Sophos Support Videos | Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Mayur Makvana

    web server in production we cannot DNAT the server due to security issue. 

    we are planning to add WAF policy in firewall and use as reverse proxy.

                                                                                     ISP--------------------------------------------------------web access through HTTPS

    scenario is----                                                              |

                                    webserver----DMZ-WAF- ------firewall

                                                                                        |

                                                                           Lan user access through FQDN

    issue is-------

    LAN-if user access web server through LAN use FQDN (ex-https://abc.com) traffic resolve in local ad DNS and send to local IP of webserver. 

    VPN/Internet-if user connect VPN and access same web server (ex-https://abc.com) its uses VPN or internet.

    Thanks

    SATYA

          

Reply
  • 0 in reply to Mayur Makvana

    web server in production we cannot DNAT the server due to security issue. 

    we are planning to add WAF policy in firewall and use as reverse proxy.

                                                                                     ISP--------------------------------------------------------web access through HTTPS

    scenario is----                                                              |

                                    webserver----DMZ-WAF- ------firewall

                                                                                        |

                                                                           Lan user access through FQDN

    issue is-------

    LAN-if user access web server through LAN use FQDN (ex-https://abc.com) traffic resolve in local ad DNS and send to local IP of webserver. 

    VPN/Internet-if user connect VPN and access same web server (ex-https://abc.com) its uses VPN or internet.

    Thanks

    SATYA

          

Children
No Data
Unfiltered HTML