Hi,
I have configured SSL VPN according to Sophos KB. The issue i have is that clients can connect to SSL VPN but cannot access internal network resources (shares, RDP, etc).
ISP - Router - XG - LAN
Config:
XG WAN: 192.168.1.89 (static)
XG LAN…
Hello Community members,
Hope everyone is doing well at their end.
It was working fine earlier and now I am getting an error while connecting Sophos Connect VPN i.e. Policy Mismatch Error. Import a new policy for this connection.
As per the…
Hello,
I'm using XGS2300 (SFOS 19.5.1 MR-1-Build278), sophos connect 2.2.90.1104 with latest pattern updates (Sophos Connect - 2.2.090 and SSL VPN clients - 1.0.009). I have set up SSL VPN remote access with microsoft Azure MFA and nps server. The connection…
I received my credentials from the sysadmin and downloaded the ovpn file. When I run `sudo openvpn --config /tmp/vjahagidar__ssl_vpn_config.ovpn` with admin provided credentials the process runs and displays "2023-04-12 11:46:03 Initialization Sequence…
Had a few Win10 clients recently that received that error when they tried to establish the SSL VPN connection.
The issue could be resolved by a client restart.
As I've never seen that error, can you please describe what it means? The log looks like…
Hello,
do you know if is possible to use a third party wildcard certificate to configure an SSL remote access on an XG firewall?
Thank you in advance, Marco.
Hello everybody, I'm trying to enter into a VPN from Sophos but I haven't been able. I'm new in this technology and that's why I'm not sure what else is missing
First of all I tried to access to a VPN through openvpn like the one in this video
1.…
Hi all,
is it possible to restrict VPN access for unauthorized devices ?
We have employees who are working from home and instead of using company laptop (which has security measures implemented) they are using their home computer to establish VPN…
Hello Community,
I'm in the process of switching my companies work from home VPN solution over to use our new Sophos XGS3100 Firewall.
Currently we prefer to use the IPsec remote access service, as it is easy to deploy via the general .scx file and…
Hi Guys,
Is there any way to disable user access SSLVPN from LAN. Some users connected to VPN from home and when thy bring laptop to work it still stay connected.
I did this and still no luck.
Just disable the SSL VPN check box for LAN in the Administration…
We are currently in the process of upgrading our SG to an XG and because of that have to deploy new SSL VPN configs to all our clients.
In the past we used Tunnelblick as our OpenVPN client of choice, but there is one major issue, in order to import…
Hi;
We have a large server farm behind sophos firewall. There are different domain name AD servers available. I can authenticate users over ADs with these different domains. I can also use AD authentication on SSL VPN connections. No problem till this…
Connecting from an Android Mobile via IPv6 only carrier (Telstra) network (single stack) to Sophos XG19 via SSL VPN seems to create some strange issues.
The Sophos XG firewall has a single IPv4 gateway address that the client connects too without any…
We've been working on improving the Sophos SSL VPN performance for a client (seemingly getting half the throughput of their previous SonicWall appliance). We eventually narrowed down that our SSL VPN settings for encryption don't seem to be applied correctly…
Hi folks,
we are currently in the rollout of SSL-VPN Configurations and noticed performance issues at users which are using LTE Internet connections with latency.
So we want to improve performance by switching from tcp to udp at the sophos firewall…
Hello,
We would need a specific user to connect SSL tunnel client and access internet troughtout the sophos so that he can have the public Ip from the company.
I've created an SSL VPN and set the tunnel access as "Use as default gateway", created…
After setting up the auto connect on a windows 10 machine I receive access to c:\program files (x86)\sophos\connect was denied. I have tried running with admin rights and get the same error. Can someone provide a resolution to this?
Hi !!
im having a problem whit my SSL VPN´S, i have my SSL VPN whit the "USE as Default gateway option on"
In my NAT rules i Have my SSL VPN doing MASQ to original, and in firewall rules i have permitid the SSL VPN to access my LAN´S and the WAN on…
Hello,
We are monitoring VPNSSL for security purpose with snmptraps.
It's working, but in the text send in the trap by the sophos firewall, we don't have the real public client ip address.
Here is an example :
20230308.100302 UDP: [XXX.XXX.XXX…
Hello there, When i have the static IP Address disabled in my SSL Global Config it works fine, the firewall can reach all the devices connected through VPN.
The issue comes when I enable the Static IP Address in SSL VPN Global Config, When I assign…
i would like to use GPO for my client user,also i reference the script via GPO but this is not fit to me,
could someone can help me to depoly sophos connect via GPO without script, Many thanks.
Hi,
first of all is it possible to use the internet on both wan ports? Like combine?
Secound, would it possible to combine both wan ports for ssl vpn? We have two providers which give use each 50mbit/s uploud, and sometimes we need more for remote…