Is it possible to change the SSL VPN Port for Remote Access??
... and for the User Portal, too?
If it's using port 443, won't that conflict with any WAF profiles you create on the same IP using HTTPS? If so, then SSL VPN port configuration needs to be enabled ASAP.
Hi, Under System > Administration > SettingsChange the "User Portal HTTPS Port" port, this port too will be used for SSL VPN remote connection.
Analyst at TecnomegaCyberoam Certified Network & Security Expert (CCNSE)
Hi Carlos, unfortunately you are wrong. The XG uses TCP 8443 per default for SSL VPN. (Verified via TCPdump.) The User Portal SSL Port configuration has no impact in that.
I have checked it. (System > Administration > Settings > User Portal HTTPS Port) This function is not equal to the Cyberoam configuration. Sophos use it for their User Portal and not for the SSL VPN as shown under KB1775 ( http://kb.cyberoam.com/default.asp?id=1775 ) The Sophos XG configuration site looks familiar to the Cyberoam configuration site, but the function seems to be different. I have tried 5 different port configurations and the created SSL VPN Profile (downloaded on the User Portal Site) still contains TCP 8443. So I've found my own workaround... Add a new rule of type Business Application Policy. Set application template to "Non-HTTP Based Policy". Give it a name. Set your source host to any. Under Hosted Server: Set source zone to "WAN" Under Protected Application Servers: Set protected zone to LAN Set protected application server to the LAN IP of the XG. Do not forward all ports. Under Port Forwarding: Set your protocol to the SSL VPN value. External port type is port. External port is 443 Mapped port type is port as well. Set your internal port to 8443. Under Policies for Business Applications: Set Intrusion Prevention to "WAN to LAN" Finaly open the VPN SSL Configration File with notepad and change the SSL port to 443. Done...
Hello, is there a way to change the port ? In the road map maybe?