https://community.sophos.com/utm-firewall/f/utm-managed-endpoint/99602/is-my-self-signed-vpn-setup-correctlyHello all, I&#39;m looking for a quick review of my SSL VPN setup and something that keeps going over in my head. My UTM setup is: I have both a public recognized cert as well as self signed. My public X509 is issued to *.domain.com wildcard and isen-USTelligent Community 12https://community.sophos.com/thread/362067?ContentTypeID=1Wed, 17 Jan 2018 14:09:39 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:06c526ba-6add-42d8-a84b-fa31f0f79471BAlfson<p>Salut Aaron and welcome to the UTM Community!</p> <p>I would think that a self-signed CA would be more secure that a publically-signed CA.&nbsp; Consider that you have to import&nbsp;the HTTPS Signing CA&nbsp;certificate into&nbsp;your browsers to avoid SSL warning messages because&nbsp;the Proxy uses a&nbsp;self-signed cert.</p> <p>Cheers - Bob</p><div style="clear:both;"></div>