Hi Community,
i'm facing a strange problem in a sophos from one of our customers. The SSL VPN Has beenstruggeling with long first loading times in the browser, for example we go to google.com, takes about 40 seconds to load, so i thougth it was a dns problem, however me and the sophos support tried every possible dns things, to no avail. THen we were looking at the firewall logs and we saw that the traffic from the ssl vpn was being dropped to the sophos (which is acting as a proxy on port 8080) ? , but then the next strange thing is that after some time it starts workign yet the traffic to port 8080 is being dropped. I'm now wondering what is happening here.
Here is the firewall log
10.119.1.3 is the sophos UTM 9.716, and my test client is running the latest sophos connect client using the ssl vpn, its the ip 10.117.4.2 currently trying to access google.de
action="drop" fwrule="60001" initf="tun0" srcip="10.117.4.2" dstip="10.119.1.3" proto="6" length="52" tos="0x00" prec="0x00" ttl="128" srcport="60627" dstport="8080" tcpflags="SYN"
I've read that it could be due to masqerading?
Oh and for some reason the ssl vpn pool also isnt part of the deafult web filter profile but yet it's working?
Greetings
George
This thread was automatically locked due to age.