Hi,
I have forced a rule where users has to vpn no matter what when they are outside our network domain.
I was able to perform a file provisioning that auto connect users to VPN, however I still have one issue is that sometimes, before connecting to vpn, they have to be on the internet after that they VPN.
What I noticed is that only traffic that needs to be directed to our resources goes through the firewall VPN while internet goes to their network gateway.
We are fully tunnel, so after investigation I found that because we only lease IPV4 and since the user is connected to external network they have ipv6 sometimes, then the network is directed to ipv6 gateway when using the internet. It was solved by manually disabling ipv6 to test it then the traffic went back through sophos fully even with web search. What is the best practice here, I don't want to disable IPV6 as I heard it is not recommended, should I allow lease IPV6 and IPV4 would that affect our network access to vpn users for our resources? If I allow IPV6 lease what are other things i should check not to create an issue to users not accessing our resources
Added TAGs
[edited by: Raphael Alganes at 2:46 PM (GMT -7) on 30 Oct 2024]