Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 8 subscribers
  • Views 831 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG Routing SSL VPN

WalterWay

Hallo,

die zugelassenen Netwerkressourcen in den SSL VPN Einstellungen sind doch für die Routing Einträge auf den Clients zuständig oder wird damit auch ein entsprechender Eintrag in der XG erstellt? 

Ich benutze SSL VPN nicht als default Gateway, möchte nur den Traffic zu einem speziellen Host über die WAN Schnittstelle der XG routen.

Eine entsprechende Firewall Regel existiert (SSLVPN to WAN). Wenn ich den Routing Eintrag manuell auf dem Client setzte, erreiche ich den Host allerdings nicht. Liegt es an dem fehlenden Routing Eintrag (bzw. dem fehlenden Eintrag in den zugelassenen Netwerkressourcen) auf der XG?

Viele Grüße



This thread was automatically locked due to age.
Parents
  • 0

    Hello Walter,

    Thank you for contacting the Sophos Community.

    The Permitted network resources will tell the Sophos Connect Client what specific networks and/or host IPs to send via the tunnel when not in Default Gateway mode.

    However, usually, those resources are for directly connected networks to the Sophos Firewall; in your case, it seems like you’re trying to send traffic to a network not connected directly to the Sophos Firewall. If so, you would probably need to add an additional SD-WAN route.

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
Reply
  • 0

    Hello Walter,

    Thank you for contacting the Sophos Community.

    The Permitted network resources will tell the Sophos Connect Client what specific networks and/or host IPs to send via the tunnel when not in Default Gateway mode.

    However, usually, those resources are for directly connected networks to the Sophos Firewall; in your case, it seems like you’re trying to send traffic to a network not connected directly to the Sophos Firewall. If so, you would probably need to add an additional SD-WAN route.

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
Children
No Data
Unfiltered HTML