Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 15 replies
  • Subscribers 1 subscriber
  • Views 11648 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN: Client to Client communication

lheinemann
Dear everybody,

I have currently implemented an SSL Client VPN which works perfectly fine for my routed networks (tunnel).

I am wondering how it is possible to have the VPN IP Pool ( 10.242.2.x ) routed through the tunnel as I want to have the possibility to communicate whith each connected VPN client vice versa.

Once I add the VPN IP Pool to the Local Network group my client starts not being able to connect to the astaro gateway anymore.

Any thoughts on this ?

Thanks in advance.

Lars


This thread was automatically locked due to age.
Parents
  • 0
    If the trick works, then I think there's nothing to be gained by using a different VPN.

    You commented that the softphones "know" the IPs of the other phones - I took that to mean the IP assigned by the SSL Remote Access server in 10.242.2.0/24.  The only way for this to be easy is if the softphone doesn't register until the VPN connection is active.  If the phone registers with the public IP of the remote user instead of the VPN IP, I think this will get messy fast!

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    If the trick works, then I think there's nothing to be gained by using a different VPN.

    You commented that the softphones "know" the IPs of the other phones - I took that to mean the IP assigned by the SSL Remote Access server in 10.242.2.0/24.  The only way for this to be easy is if the softphone doesn't register until the VPN connection is active.  If the phone registers with the public IP of the remote user instead of the VPN IP, I think this will get messy fast!

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML