Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 15 replies
  • Subscribers 1 subscriber
  • Views 11647 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN: Client to Client communication

lheinemann
Dear everybody,

I have currently implemented an SSL Client VPN which works perfectly fine for my routed networks (tunnel).

I am wondering how it is possible to have the VPN IP Pool ( 10.242.2.x ) routed through the tunnel as I want to have the possibility to communicate whith each connected VPN client vice versa.

Once I add the VPN IP Pool to the Local Network group my client starts not being able to connect to the astaro gateway anymore.

Any thoughts on this ?

Thanks in advance.

Lars


This thread was automatically locked due to age.
Parents
  • 0
    Lars, what you were trying cannot work.  There is a way to do what you want, but it requires an Additional Address and a DNAT for each remote you want to reach.  The downside of doing this with SSL Remote Access is that you can't have a fixed, remote IP for specific users like you can do with L2TP/IPsec.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Lars, what you were trying cannot work.  There is a way to do what you want, but it requires an Additional Address and a DNAT for each remote you want to reach.  The downside of doing this with SSL Remote Access is that you can't have a fixed, remote IP for specific users like you can do with L2TP/IPsec.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • 0 in reply to BAlfson
    Hi,

    i'm also in need of direct client to client communication for SSL-VPN Users. We are going to implement for one of our customers an IP capable phone system which enables users to work remotley with SoftPhones on their Laptops.

    Unfortunatley the Softphones try to communicate directly with each other as soon as they detect that the number called is also using IP. In my current setup this won't work.

    I'm wondering how to solve this best? Already spoke to the phone system company and it's not possible to configure a fallback (for routing the calls through the phone system, preventing the softphones to talk to each other directly).

    Any hints appreciated!

    kind regards

    jan
Unfiltered HTML