Hi,
I have two Internet connections with several static IPs.
is it possible to configure the SSL VPN so that it listen on two specific IP Addresses on different Interfaces.
This thread was automatically locked due to age.
Hi,
I have two Internet connections with several static IPs.
is it possible to configure the SSL VPN so that it listen on two specific IP Addresses on different Interfaces.
Hi Marco Hald,
Thank you for reaching out to the Community!
You should be able to override the hostname under the SSL VPN setting, but it will only allow you to add one IP address.
However, you could use the FQDN to override the hostname and use A record to maps that domain to the required IP address.
Thanks,
If you don't select an interface but "any interface" you can establish SSL-VPN to every interface-IP.
To configure more than one IP (or a special one) open the .ovpn Config-file and change the line containing IP or FQDN.
To allow more than one destination (for example with multiple ISP-connections at the SG) copy the line containing IP or FQDN and change the settings within the second. The Client try the second entry if the first fails / times out.
Dirk
Systema Gesellschaft für angewandte Datentechnik mbH // Sophos Platinum Partner
Sophos Solution Partner since 2003
If a post solves your question, click the 'Verify Answer' link at this post.
If you don't select an interface but "any interface" you can establish SSL-VPN to every interface-IP.
To configure more than one IP (or a special one) open the .ovpn Config-file and change the line containing IP or FQDN.
To allow more than one destination (for example with multiple ISP-connections at the SG) copy the line containing IP or FQDN and change the settings within the second. The Client try the second entry if the first fails / times out.
Dirk
Systema Gesellschaft für angewandte Datentechnik mbH // Sophos Platinum Partner
Sophos Solution Partner since 2003
If a post solves your question, click the 'Verify Answer' link at this post.
Hello Marco,
as Dirk already suggested, you can have more than one "remote ...." line in your Client OpenVPN config file.
So if you use:
remote "first FQDN or IP" 443
remote "second FQDN or IP" 443
the client will try each gateway and use the first, that works.
Hope this helps.
Mit freundlichem Gruß, best regards from Germany,
Philipp Rusch
New Vision GmbH, Germany
Sophos Silver-Partner
If a post solves your question please use the 'Verify Answer' button.
Hi dirkkotte,
when I don't select a interface and any Interface is used, the Port will be bound to all available IPs or I am wront with this ?
When i use port 443 for SSL VPN then i cannot use Port 443 because it is already bound on all Interfaces with the SSL VPN.
I would like to use one IP from each Provider for SSL VPN on Port 443 and still be able to use one other IP of each Provider for Webserver Protection on Port 443.
The configuration on the client side makes perfectly sense.
Thanks for explaining.
1. "when I don't select a interface and any Interface is used, the Port will be bound to all available IPs or I am wront with this ?" - correct
2. thats the reason why i use port 1194 (TCP or UDP) ... the default openVPN-port -
Dirk
Systema Gesellschaft für angewandte Datentechnik mbH // Sophos Platinum Partner
Sophos Solution Partner since 2003
If a post solves your question, click the 'Verify Answer' link at this post.