This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web Protection Decrypt and Scan break VPN Connection

Hello,

 

I have my Open VPN Client configured Router in a DMZ, and route all traffic from LAN over this Tunnel. 

 

I have the setting Web Filtering - HTTPS - URL filtering only, this works.

 

When I change the setting to Decrypt and Scan, the VPN Tunnel disconnects, and the Open VPN Log on the Router show Client Wait , Reconnect , Tls Errror.

 

What do I have to configure, to use Decrypt and Scan setting ?

 

Thx



This thread was automatically locked due to age.
Parents
  • Perhaps you can omit the DMZ network from web filtering (depending on whats all in your DMZ) and only use webfiltering on your Internal LAN. That way its highly unlikely that the https traffic from the OpenVPN client is intercepted by the decrypt and inspect policy.


    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Reply
  • Perhaps you can omit the DMZ network from web filtering (depending on whats all in your DMZ) and only use webfiltering on your Internal LAN. That way its highly unlikely that the https traffic from the OpenVPN client is intercepted by the decrypt and inspect policy.


    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Children