This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Question about the Behavior of Site-to-Site VPN and Web Protection

Hi Folks,

I think I would find the Answer in the UTM Manual,

but if someone knows the Answer,

that would help very much -> I don't need to search then.

My Question is: if I create an VPN Tunnel (tun0) to eg. openvpn

for all the Traffic / surfing

would the Traffic still be scanned by the UTM (Anti Virus, IPS, ...)?

an other Thing (if it still would scanned) is -> how is the Best Way to realize that?

Regards Andy



This thread was automatically locked due to age.
Parents
  • Hallo Andy,

    The answer is yes, but please give us the definition of the tunnel you propose to create so that we can give you clear instructions.

    Cheers - Bob
    PS Moving this to the Web Protection forum.

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Hi Bob,

    thanks for answering and sorry for the late Reply, the Forum/System don't informed me that you've answered.

    I haven't created an VPN-Tunnel yet, I wanted to clarify the Behavior of Web-Filtering and VPN before.

    What VPN Provider, for Private Surfing, is suggested with the SG105?

    Andy

  • There's no client in WebAdmin for any VPN Provider, Andy.  The best you can do is to find a provider that lets you establish a site-to-site.  Either that, or you use a client in your PC.

    If you use a client in your PC, you can't use Web Protection.

    If you have a site-to-site, you can run all traffic through the tunnel by having "Internet IPv4" in 'Remote Networks'.  In that case, you can use Web Filtering in Transparent and/or Standard mode.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • BAlfson said:
    The best you can do is to find a provider that lets you establish a site-to-site

    can you suggest a VPN Site-to-Site Provider relating many Factors as Price, Throughput, ...?

    BAlfson said:
    Either that, or you use a client in your PC.

    I don't want this

Reply
  • BAlfson said:
    The best you can do is to find a provider that lets you establish a site-to-site

    can you suggest a VPN Site-to-Site Provider relating many Factors as Price, Throughput, ...?

    BAlfson said:
    Either that, or you use a client in your PC.

    I don't want this

Children