This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

WAF and SSL remote access

Hi, we're currently using ssl vpn on the utm for remote access, and are currently considering beginning to use WAF as well for securing our Internet facing servers. We have only 1 external IP address. Can we run the ssl VPN on port 443 and at the same time publish our servers with https on port 443 as well with only 1 ip or must we move one of the services over to a new port?

/Andy

This thread was automatically locked due to age.

Parents

0 BAlfson over 10 years ago

I like Vilic's idea! If you're going to have to do that anyway, you might consider whether you want to make a change based on The Zeroeth Rule in Rulz, as that does cause all certificates to be created anew.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
0 firebear_01 over 10 years ago in reply to BAlfson

Hi,

you can change the protocol to udp or you can simply change the Port for the SSL-VPN but there is the UserPortal on Port 443/tcp to.
And you could use SSL-VPN via Port 443 from most locations but if you change it you have to look that this port is allowed in every Firewall your Clients want to pass.
Maybe its not opened in every net where they want to use it.

Greets
Firebear
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 firebear_01 over 10 years ago in reply to BAlfson

Hi,

you can change the protocol to udp or you can simply change the Port for the SSL-VPN but there is the UserPortal on Port 443/tcp to.
And you could use SSL-VPN via Port 443 from most locations but if you change it you have to look that this port is allowed in every Firewall your Clients want to pass.
Maybe its not opened in every net where they want to use it.

Greets
Firebear
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data