This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

User portal - Remote access

Dear all.

I have configured my XG firewall for VPN SSL Access. However, I am not able to access the User Portal on a public network using https://myXG public address:port

I changed my https port from 443 to XXX on the firewall and I port forward on my ISPs mikrotik router- could this be the reason? Pointers in the right direction would be greatly appreciated.

Kind regards,

Tony.

This thread was automatically locked due to age.

0 lferrara over 9 years ago

Tony,

it should work if you did correctly. Can you share your User Portal configuration?

Thanks
- 0 AnthonyZiba over 9 years ago in reply to lferrara
  
  Hi Luk,
  
  Thanks for your reply. First of all my setup is as follows:
  
  My problem is that my Sophos is behind the Mikrotic router supplied by my ISP. Internally, my Sophos ip address is 10.137.10.2. However my WAN IP (which is assigned to the Mikrotic is 41.x.x.x. I have followed the VPN SSL config guide to the book and managed to download and install the VPN Client configurations using the local network. However, when I am outside the private/local network, I cannot even access the Sophos using the WAN IP which has already been forwarded with my SSL port .
  - 0 AnthonyZiba over 9 years ago in reply to AnthonyZiba
    
    Below is the missing diagram from the above post
  - 0 AnthonyZiba over 9 years ago in reply to AnthonyZiba
    
    My setup diagram is as above
  - 0 AWilson over 9 years ago in reply to AnthonyZiba
    
    When you setup the XG, did you set it up as Gateway mode or as Firewall mode?
    
    If you could you really just want to give it a full WAN IP, other wise it's double natted and problematic. I would try to make your mikrotik device transparent to the XG and give your XG full wan access. That's why you can't access it from the outside.
    
    That being said, did you turn on User Portal for WAN? Settings -> Administration -> Device Access and add SSL VPN and User Portal to WAN, should be there by default.