SSL VPN Connection redirected to branch office through Site to Site tunnel

Good Evening All

We have a Site to Site connection between the main office and the Cloud Server Site. Employees in there laptops have two SSL VPN Connections one for the main office and the other for the Cloud Site and they connect using the sophos connect client to the site they want each time

I want to know if connecting only to the SSL VPN of the main office the traffic can be redirected to the cloud site and how we can do it.

We have an active Site to Site tunnel between the main office and the cloud, the cloud firewall is a UTM and it is managed by the provider.

Now when users connect with SSL VPN to the main office have access only to the network of the main office, and when they connect to cloud have access only to the cloud's network

Parents
  •  ,

    Is your connection between main office and Cloud also S2S SSLVPN? If you are looking at client accessing main office (using sslvpn ra) resources should also be able to access resources behind Cloud, yes it is possible.

    * On your main office SFOS, sslvpn remote access policy should include - networks behind Cloud in 'Permitted networks' config so that ra client can access resources of Cloud via main office SFOS.

    * On your Cloud UTM, sslvpn s2s policy should include sslvpn ra virtual ip pool n/w (configured in global settings of main office sfos) in 'remote n/w' (pls check the wording for remote n/w on UTM).  

Reply
  •  ,

    Is your connection between main office and Cloud also S2S SSLVPN? If you are looking at client accessing main office (using sslvpn ra) resources should also be able to access resources behind Cloud, yes it is possible.

    * On your main office SFOS, sslvpn remote access policy should include - networks behind Cloud in 'Permitted networks' config so that ra client can access resources of Cloud via main office SFOS.

    * On your Cloud UTM, sslvpn s2s policy should include sslvpn ra virtual ip pool n/w (configured in global settings of main office sfos) in 'remote n/w' (pls check the wording for remote n/w on UTM).  

Children