Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Sophos SSL VPN not using first gateway

Good Day,

We have a remote SSL VPN setup for Sophos Connect clients to remote into our network when working from home.

We have two GWs

Primary GW1: IP:154.x.x.x

Backup GW2: IP:105.x.x.x

One user is currently experiencing issues with their ISP slowing down the traffic so we want to force them connecting to the Primary GW which is GW1 (154.x.x.x) and not use the Backup GW2 (105.x.x.x). The client's ISP traffic is being slowed down to the backup GW due to not having a peer connection directly to the client's ISP. 

Tried to change the Provisioning file to only connect to the PrimaryGW instead but each time the user connects the VPN automatically connects to the backup GW.

Struggling to force the client to use the Primary GW. Hope this makes sense? 



Added TAGs
[edited by: Raphael Alganes at 9:58 AM (GMT -7) on 16 Oct 2024]
Parents
  • Hello,

    Thank you for sharing the detailed information.

    Can you please share us the client logs while attempting to connect?

    You may collect the logs through below mentioned steps:

    Open Sophos Connect Client, click on 3 dots -> Open VPN Logs.

    OR

    You may go to Windows C drive -> Program Files (x86) -> Sophos -> Connect -> SCVPN.log

    support.sophos.com/.../KBA-000004884

    Mayur Makvana
    Technical Account Manager | Global Customer Experience

    Sophos Support Videos | Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question please use the 'Verify Answer' button.

  • Hi, 

    Please find log attached.

    Note: Note have redacted just the Public IP and some domain user details. 

    2024-10-15 08:23:42PM [5452] inf Starting Sophos Sophos Connect version 2.2.90.1104
    2024-10-15 08:23:42PM [5452] dbg Initializing protected storage
    2024-10-15 08:23:42PM [5452] inf No user is currently logged on
    2024-10-15 08:23:42PM [5452] dbg Starting the auto-importer
    2024-10-15 08:23:43PM [5452] inf Initializing strongSwan
    2024-10-15 08:23:52PM [5452] dbg strongSwan version 5.9.5 has been started
    2024-10-15 08:23:52PM [5452] inf Initializing open vpn service
    2024-10-15 08:23:52PM [5452] dbg Starting the communications module
    2024-10-15 08:23:52PM [5452] dbg Starting HTTP server on 127.0.0.1:60110
    2024-10-15 08:23:52PM [5452] inf Sophos Connect started
    2024-10-15 08:23:57PM [4596] dbg Sending telemetry data to sftelemetry.sophos.com:443
    2024-10-15 08:24:01PM [4888] dbg User change detected: current user is DOMAIN\User
    2024-10-15 08:24:01PM [4888] inf Logged on user is DOMAIN\User
    2024-10-15 08:24:02PM [9944] dbg Multiple Gateways VPN state changed to connecting
    2024-10-15 08:24:02PM [9944] dbg Starting tunnel (connecting)
    2024-10-15 08:24:03PM [9944] inf Remote added to list: 105.x.x.x 8443 tcp-client
    2024-10-15 08:24:03PM [9944] inf Remote added to list: 154.x.x.x 8443 tcp-client
    2024-10-15 08:24:06PM [9944] dbg Tunnel initiated to 105.x.x.x 8443 tcp-client
    2024-10-15 08:24:14PM [11104] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 08:24:14PM [11104] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 08:24:14PM [11104] dbg Connection to open vpn has been established
    2024-10-15 08:24:14PM [11104] dbg Adding watch for physical IP 192.168.110.223 down
    2024-10-15 08:24:14PM [12384] dbg RunLogonScript thread started
    2024-10-15 08:24:14PM [12384] dbg Identified console user: DOMAIN\User
    2024-10-15 08:24:14PM [12384] dbg Identified Logon server: DOMAINCONTROLLER
    2024-10-15 08:24:14PM [11104] dbg Multiple Gateways VPN state changed to connected
    2024-10-15 08:25:03PM [12384] dbg Executing logon script: \\DOMAINCONTROLLER\NETLOGON\login.bat
    2024-10-15 08:25:53PM [11104] dbg Connection reset, restarting [-1]
    2024-10-15 08:25:53PM [11104] dbg Received connection reset
    2024-10-15 08:25:53PM [11104] dbg Multiple Gateways VPN state changed to disconnecting
    2024-10-15 08:25:53PM [9944] dbg Tunnel is stopped
    2024-10-15 08:26:18PM [12040] wrn Timed out waiting for tunnel to stop
    2024-10-15 08:26:18PM [12040] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 08:26:18PM [12040] dbg Sending notification: Received connection reset from gateway: 105.x.x.x 8443 tcp-client
    2024-10-15 08:26:24PM [10312] dbg Multiple Gateways VPN state changed to connecting
    2024-10-15 08:26:24PM [10312] dbg Starting tunnel (connecting)
    2024-10-15 08:26:25PM [10312] inf Remote added to list: 105.x.x.x 8443 tcp-client
    2024-10-15 08:26:25PM [10312] inf Remote added to list: 154.x.x.x 8443 tcp-client
    2024-10-15 08:26:28PM [10312] dbg Tunnel initiated to 105.x.x.x 8443 tcp-client
    2024-10-15 08:26:30PM [11880] dbg All tap-windows6 adapters on this system are currently in use or disabled.
    2024-10-15 08:26:30PM [11880] dbg All tap-windows6 adapters on this system are currently in use or disabled.
    2024-10-15 08:26:30PM [11880] dbg Multiple Gateways VPN state changed to disconnecting
    2024-10-15 08:26:30PM [10312] dbg Tunnel is stopped
    2024-10-15 08:26:55PM [8996] wrn Timed out waiting for tunnel to stop
    2024-10-15 08:26:55PM [8996] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 08:26:55PM [8996] dbg Sending notification: SSL VPN error: All tap-windows6 adapters on this system are currently in use or disabled.
    2024-10-15 08:27:06PM [15244] dbg Multiple Gateways VPN state changed to connecting
    2024-10-15 08:27:06PM [15244] dbg Starting tunnel (connecting)
    2024-10-15 08:27:06PM [15244] inf Remote added to list: 105.x.x.x 8443 tcp-client
    2024-10-15 08:27:06PM [15244] inf Remote added to list: 154.x.x.x 8443 tcp-client
    2024-10-15 08:27:09PM [15244] dbg Tunnel initiated to 105.x.x.x 8443 tcp-client
    2024-10-15 08:27:15PM [7860] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 08:27:15PM [7860] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 08:27:15PM [7860] dbg Connection to open vpn has been established
    2024-10-15 08:27:15PM [7860] dbg Adding watch for physical IP 192.168.68.115 down
    2024-10-15 08:27:15PM [7860] dbg Multiple Gateways VPN state changed to connected
    2024-10-15 08:32:41PM [7860] dbg Connection reset, restarting [-1]
    2024-10-15 08:32:41PM [7860] dbg Received connection reset
    2024-10-15 08:32:41PM [7860] dbg Multiple Gateways VPN state changed to disconnecting
    2024-10-15 08:32:41PM [15244] dbg Tunnel is stopped
    2024-10-15 08:33:05PM [7860] dbg received exiting event
    2024-10-15 08:33:05PM [9652] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 08:33:05PM [9652] dbg Sending notification: Received connection reset from gateway: 105.x.x.x 8443 tcp-client
    2024-10-15 08:33:11PM [4016] dbg Multiple Gateways VPN state changed to connecting
    2024-10-15 08:33:11PM [4016] dbg Starting tunnel (connecting)
    2024-10-15 08:33:11PM [4016] inf Remote added to list: 105.x.x.x 8443 tcp-client
    2024-10-15 08:33:11PM [4016] inf Remote added to list: 154.x.x.x 8443 tcp-client
    2024-10-15 08:33:14PM [4016] dbg Tunnel initiated to 105.x.x.x 8443 tcp-client
    2024-10-15 08:33:22PM [7340] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 08:33:22PM [7340] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 08:33:22PM [7340] dbg Connection to open vpn has been established
    2024-10-15 08:33:22PM [7340] dbg Adding watch for physical IP 192.168.110.223 down
    2024-10-15 08:33:22PM [7340] dbg Multiple Gateways VPN state changed to connected
    2024-10-15 08:41:14PM [7340] dbg Connection reset, restarting [-1]
    2024-10-15 08:41:14PM [7340] dbg Received connection reset
    2024-10-15 08:41:14PM [7340] dbg Multiple Gateways VPN state changed to disconnecting
    2024-10-15 08:41:14PM [4016] dbg Tunnel is stopped
    2024-10-15 08:41:39PM [14872] wrn Timed out waiting for tunnel to stop
    2024-10-15 08:41:39PM [14872] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 08:41:39PM [14872] dbg Sending notification: Received connection reset from gateway: 105.x.x.x 8443 tcp-client
    2024-10-15 08:41:42PM [7340] dbg received exiting event
    2024-10-15 08:41:45PM [13572] dbg Multiple Gateways VPN state changed to connecting
    2024-10-15 08:41:45PM [13572] dbg Starting tunnel (connecting)
    2024-10-15 08:41:45PM [13572] inf Remote added to list: 105.x.x.x 8443 tcp-client
    2024-10-15 08:41:45PM [13572] inf Remote added to list: 154.x.x.x 8443 tcp-client
    2024-10-15 08:41:47PM [13572] dbg Tunnel initiated to 105.x.x.x 8443 tcp-client
    2024-10-15 08:41:53PM [6492] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 08:41:53PM [6492] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 08:41:53PM [6492] dbg Connection to open vpn has been established
    2024-10-15 08:41:53PM [6492] dbg Adding watch for physical IP 192.168.68.115 down
    2024-10-15 08:41:53PM [6492] dbg Multiple Gateways VPN state changed to connected
    2024-10-15 08:43:43PM [6492] dbg Connection reset, restarting [-1]
    2024-10-15 08:43:43PM [6492] dbg Received connection reset
    2024-10-15 08:43:43PM [6492] dbg Multiple Gateways VPN state changed to disconnecting
    2024-10-15 08:43:43PM [13572] dbg Tunnel is stopped
    2024-10-15 08:44:07PM [6492] dbg received exiting event
    2024-10-15 08:44:07PM [12040] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 08:44:07PM [12040] dbg Sending notification: Received connection reset from gateway: 105.x.x.x 8443 tcp-client
    2024-10-15 08:44:12PM [10020] dbg Multiple Gateways VPN state changed to connecting
    2024-10-15 08:44:12PM [10020] dbg Starting tunnel (connecting)
    2024-10-15 08:44:12PM [10020] inf Remote added to list: 105.x.x.x 8443 tcp-client
    2024-10-15 08:44:12PM [10020] inf Remote added to list: 154.x.x.x 8443 tcp-client
    2024-10-15 08:44:15PM [10020] dbg Tunnel initiated to 105.x.x.x 8443 tcp-client
    2024-10-15 08:44:25PM [11244] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 08:44:25PM [11244] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 08:44:25PM [11244] dbg Connection to open vpn has been established
    2024-10-15 08:44:25PM [11244] dbg Adding watch for physical IP 192.168.110.223 down
    2024-10-15 08:44:25PM [11244] dbg Multiple Gateways VPN state changed to connected
    2024-10-15 08:53:07PM [5240] dbg Multiple Gateways VPN state changed to disconnecting
    2024-10-15 08:53:07PM [5240] dbg Adding watch for virtual IP 10.30.0.8 down
    2024-10-15 08:53:19PM [11244] dbg received exiting event
    2024-10-15 08:53:20PM [10020] dbg Tunnel is stopped
    2024-10-15 08:53:21PM [14664] dbg Virtual IP removed: 
    2024-10-15 08:53:21PM [14516] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 08:56:46PM [5240] dbg Multiple Gateways VPN state changed to disconnecting
    2024-10-15 08:56:46PM [10504] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 08:56:46PM [5240] inf The connection 'Multiple Gateways' has been removed
    2024-10-15 08:58:27PM [8040] inf The connection '<154.x.x.x>' was imported from connection data
    2024-10-15 08:58:32PM [5240] dbg Sending notification: DNS resolution failed for gateway: <154.x.x.x>
    2024-10-15 08:58:33PM [5240] dbg Sending notification: DNS resolution failed for gateway: <154.x.x.x>
    2024-10-15 08:58:34PM [5240] dbg Sending notification: DNS resolution failed for gateway: <154.x.x.x>
    2024-10-15 08:58:41PM [5240] inf The connection '<154.x.x.x>' has been removed
    2024-10-15 08:59:27PM [3860] inf The connection 'Multiple Gateways' was imported from connection data
    2024-10-15 08:59:28PM [5012] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 08:59:28PM [5012] dbg Sending notification: Please enter user credentials
    2024-10-15 08:59:28PM [5240] dbg Sending notification: Could not connect to untrusted server: 154.x.x.x
    2024-10-15 09:00:07PM [5240] dbg Provisioning connection from gateway: 154.x.x.x
    2024-10-15 09:00:07PM [5240] inf SSL VPN Configuration file imported from gateway :154.x.x.x
    2024-10-15 09:00:07PM [16300] dbg Multiple Gateways VPN state changed to connecting
    2024-10-15 09:00:07PM [16300] dbg Starting tunnel (connecting)
    2024-10-15 09:00:08PM [16300] inf Remote added to list: 105.x.x.x 8443 tcp-client
    2024-10-15 09:00:08PM [16300] inf Remote added to list: 154.x.x.x 8443 tcp-client
    2024-10-15 09:00:10PM [16300] dbg Tunnel initiated to 105.x.x.x 8443 tcp-client
    2024-10-15 09:00:18PM [4284] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 09:00:18PM [4284] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 09:00:18PM [4284] dbg Connection to open vpn has been established
    2024-10-15 09:00:18PM [4284] dbg Adding watch for physical IP 192.168.110.223 down
    2024-10-15 09:00:18PM [12828] dbg RunLogonScript thread started
    2024-10-15 09:00:18PM [12828] dbg Identified console user: DOMAIN\User
    2024-10-15 09:00:18PM [12828] dbg Identified Logon server: DOMAINCONTROLLER
    2024-10-15 09:00:18PM [4284] dbg Multiple Gateways VPN state changed to connected
    2024-10-15 09:00:19PM [5240] dbg Multiple Gateways VPN state changed to disconnecting
    2024-10-15 09:00:19PM [5240] dbg Adding watch for virtual IP 10.30.0.4 down
    2024-10-15 09:00:19PM [4284] dbg received exiting event
    2024-10-15 09:00:19PM [16300] dbg Tunnel is stopped
    2024-10-15 09:00:21PM [9372] dbg Virtual IP removed: 
    2024-10-15 09:00:21PM [12172] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 09:00:28PM [12828] dbg Failed to get logon script. Logon server 'DOMAINCONTROLLER' is not responding
    2024-10-15 09:00:52PM [5240] dbg Multiple Gateways VPN state changed to disconnecting
    2024-10-15 09:00:52PM [16376] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 09:00:52PM [5240] inf The connection 'Multiple Gateways' has been removed
    2024-10-15 09:00:55PM [3868] inf The connection '<154.x.x.x>' was imported from connection data
    2024-10-15 09:01:02PM [5240] inf The connection '<154.x.x.x>' has been removed
    2024-10-15 09:01:14PM [8176] inf The connection '154.x.x.x' was imported from connection data
    2024-10-15 09:01:17PM [5240] dbg Sending notification: Could not connect to untrusted server: 154.x.x.x
    2024-10-15 09:01:25PM [5240] dbg Provisioning connection from gateway: 154.x.x.x
    2024-10-15 09:01:26PM [5240] inf SSL VPN Configuration file imported from gateway :154.x.x.x
    2024-10-15 09:01:26PM [5608] dbg 154.x.x.x VPN state changed to connecting
    2024-10-15 09:01:26PM [5608] dbg Starting tunnel (connecting)
    2024-10-15 09:01:26PM [5608] inf Remote added to list: 105.x.x.x 8443 tcp-client
    2024-10-15 09:01:26PM [5608] inf Remote added to list: 154.x.x.x 8443 tcp-client
    2024-10-15 09:01:26PM [5608] inf Remote added to list: 10.0.0.2 8443 tcp-client
    2024-10-15 09:01:26PM [5608] inf Remote added to list: 10.16.0.1 8443 tcp-client
    2024-10-15 09:01:26PM [5608] inf Remote added to list: 10.50.0.1 8443 tcp-client
    2024-10-15 09:01:26PM [5608] inf Remote added to list: 10.255.0.1 8443 tcp-client
    2024-10-15 09:01:28PM [5608] dbg Tunnel initiated to 105.x.x.x 8443 tcp-client
    2024-10-15 09:01:37PM [12688] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 09:01:37PM [12688] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 09:01:37PM [12688] dbg Connection to open vpn has been established
    2024-10-15 09:01:37PM [12688] dbg Adding watch for physical IP 192.168.110.223 down
    2024-10-15 09:01:37PM [12688] dbg 154.x.x.x VPN state changed to connected
    2024-10-15 09:13:45PM [5240] dbg 154.x.x.x VPN state changed to disconnecting
    2024-10-15 09:13:45PM [5240] dbg Adding watch for virtual IP 10.30.0.133 down
    2024-10-15 09:13:57PM [12688] dbg received exiting event
    2024-10-15 09:13:57PM [5608] dbg Tunnel is stopped
    2024-10-15 09:13:59PM [7344] dbg Virtual IP removed: 
    2024-10-15 09:13:59PM [6168] dbg 154.x.x.x VPN state changed to disconnected
    2024-10-15 09:14:06PM [5240] dbg 154.x.x.x VPN state changed to disconnecting
    2024-10-15 09:14:06PM [15152] dbg 154.x.x.x VPN state changed to disconnected
    2024-10-15 09:14:06PM [5240] inf The connection '154.x.x.x' has been removed
    2024-10-15 09:14:23PM [7824] inf The connection 'Multiple Gateways' was imported from connection data
    2024-10-15 09:14:24PM [5608] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 09:14:24PM [5608] dbg Sending notification: Please enter user credentials
    2024-10-15 09:14:25PM [5240] dbg Sending notification: Could not connect to untrusted server: 154.x.x.x
    2024-10-15 09:14:58PM [5240] dbg Provisioning connection from gateway: 154.x.x.x
    2024-10-15 09:14:59PM [5240] inf SSL VPN Configuration file imported from gateway :154.x.x.x
    2024-10-15 09:14:59PM [15968] dbg Multiple Gateways VPN state changed to connecting
    2024-10-15 09:14:59PM [15968] dbg Starting tunnel (connecting)
    2024-10-15 09:14:59PM [15968] inf Remote added to list: 105.x.x.x 8443 tcp-client
    2024-10-15 09:14:59PM [15968] inf Remote added to list: 154.x.x.x 8443 tcp-client
    2024-10-15 09:15:02PM [15968] dbg Tunnel initiated to 105.x.x.x 8443 tcp-client
    2024-10-15 09:15:10PM [12564] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 09:15:10PM [12564] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 09:15:10PM [12564] dbg Connection to open vpn has been established
    2024-10-15 09:15:10PM [12564] dbg Adding watch for physical IP 192.168.110.223 down
    2024-10-15 09:15:10PM [14624] dbg RunLogonScript thread started
    2024-10-15 09:15:10PM [14624] dbg Identified console user: DOMAIN\User
    2024-10-15 09:15:10PM [14624] dbg Identified Logon server: DOMAINCONTROLLER
    2024-10-15 09:15:10PM [12564] dbg Multiple Gateways VPN state changed to connected
    2024-10-15 09:15:40PM [14624] dbg Executing logon script: \\DOMAINCONTROLLER\NETLOGON\login.bat
    2024-10-15 09:33:38PM [12564] dbg Connection reset, restarting [-1]
    2024-10-15 09:33:38PM [12564] dbg Received connection reset
    2024-10-15 09:33:38PM [12564] dbg Multiple Gateways VPN state changed to disconnecting
    2024-10-15 09:33:38PM [15968] dbg Tunnel is stopped
    2024-10-15 09:33:55PM [12564] dbg received exiting event
    2024-10-15 09:33:55PM [12916] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 09:33:55PM [12916] dbg Sending notification: Received connection reset from gateway: 105.x.x.x 8443 tcp-client
    2024-10-15 09:34:00PM [16768] dbg Multiple Gateways VPN state changed to connecting
    2024-10-15 09:34:00PM [16768] dbg Starting tunnel (connecting)
    2024-10-15 09:34:00PM [16768] inf Remote added to list: 105.x.x.x 8443 tcp-client
    2024-10-15 09:34:00PM [16768] inf Remote added to list: 154.x.x.x 8443 tcp-client
    2024-10-15 09:34:03PM [16768] dbg Tunnel initiated to 105.x.x.x 8443 tcp-client
    2024-10-15 09:34:08PM [16976] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 09:34:08PM [16976] dbg WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    2024-10-15 09:34:08PM [16976] dbg Connection to open vpn has been established
    2024-10-15 09:34:08PM [16976] dbg Adding watch for physical IP 192.168.68.115 down
    2024-10-15 09:34:08PM [16976] dbg Multiple Gateways VPN state changed to connected
    2024-10-15 11:47:57PM [4888] dbg User change detected: current user is none
    2024-10-15 11:47:57PM [4888] inf User 'DOMAIN\User' logged off
    2024-10-15 11:47:57PM [4888] dbg Disabling connections on user change
    2024-10-15 11:47:57PM [4888] dbg Multiple Gateways VPN state changed to disconnecting
    2024-10-15 11:47:57PM [4888] dbg Adding watch for virtual IP 10.30.0.2 down
    2024-10-15 11:48:09PM [16976] dbg received exiting event
    2024-10-15 11:48:10PM [16768] dbg Tunnel is stopped
    2024-10-15 11:48:11PM [6748] dbg Virtual IP removed: 
    2024-10-15 11:48:11PM [588] dbg Multiple Gateways VPN state changed to disconnected
    2024-10-15 11:48:11PM [4888] inf No user is currently logged on
    2024-10-15 11:48:34PM [4888] inf Stopping Sophos Connect
    2024-10-15 11:48:34PM [5452] dbg Disabling all connections
    2024-10-15 11:48:34PM [5452] inf Cleaning up strongSwan
    2024-10-15 11:48:34PM [5452] err Failed to stop the strongSwan service. Error 1. Failed to open the service control manager.: A system shutdown is in progress
    2024-10-15 11:48:34PM [5452] inf stopping openvpn service
    2024-10-15 11:48:34PM [5452] err Failed to stop the open vpn service. Error 1. Failed to open the service control manager.: A system shutdown is in progress
    2024-10-15 11:48:34PM [5452] dbg Stopping the communications module
    2024-10-15 11:48:34PM [5452] dbg Stopping the HTTP server
    2024-10-15 11:48:36PM [5452] dbg Waiting for telemetry module to finish
    2024-10-15 11:48:36PM [5452] dbg Waiting the auto-importer to finish
    2024-10-15 11:48:36PM [5452] dbg Cleaning up IP monitor library
    2024-10-15 11:48:36PM [5452] dbg Cleaning up protected storage
    2024-10-15 11:48:36PM [5452] dbg Cleaning up configuration
    2024-10-15 11:48:36PM [5452] inf Sophos Connect stopped
    

  • Hello,

    Can you please edit the config file and validate how these gateway added?

    2024-10-15 09:34:00PM [16768] inf Remote added to list: 105.x.x.x 8443 tcp-client
    2024-10-15 09:34:00PM [16768] inf Remote added to list: 154.x.x.x 8443 tcp-client
    2024-10-15 09:34:03PM [16768] dbg Tunnel initiated to 105.x.x.x 8443 tcp-client

    As per this, 105.X has higher preference in the config file and which is why it is attempting connection to it.

    Mayur Makvana
    Technical Account Manager | Global Customer Experience

    Sophos Support Videos | Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question please use the 'Verify Answer' button.

  • Hi  

    The config file is added below: 

    [
    {
    "display_name": "CPT_VPN",
    "gateway_order": "in_order",
    "gateway": [ "154.x.x.x", "105.x.x.x" ],
    "user_portal_port": 443,
    "otp": false,
    "auto_connect_host": "",
    "can_save_credentials": true,
    "check_remote_availability": true,
    "run_logon_script": true
    }

    Selected In_order so that it chooses the first IP which is 154.x.x.x GW

  • Hello,

    This is to download the configuration. It does not choose the same preference while attempting the connection. You may follow the steps provided by   by binding the DNS with these public IPs and mapping it accordingly.

    For now, you must edit the config file on end client and needs to change precedence of the gateway.

    Mayur Makvana
    Technical Account Manager | Global Customer Experience

    Sophos Support Videos | Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question please use the 'Verify Answer' button.

Reply Children
No Data