Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 18 subscribers
  • Views 5420 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Any tips on how to force all traffic of laptops through VPN?

PreHCM-PK

Hi there,

 

I'm currently in the planning & acquisition stage. We're planning to go with a Sophos XG 135 and possibly Sophos Central for endpoint protection. 

 

What I need: 

Allow my users with laptops to connect to ethernet, wifi, hotspots, whatever they want but force all traffic through a VPN so ALL traffic goes through our headquarter where the XG 135 is located. Obviously, if a user is in the local network VPN connection should not be needed. 

 

What I want to know: 

How to do this and what tools / services do I need from Sophos? I'm trying to figure out how to do this without manually messing around with routing tables on the laptops and other clumsy solutions.



This thread was automatically locked due to age.
Parents
  • 0

    Hey  

    I would advise to please reach out to your local Sophos Partner/Reseller. They would be able to provide you with more specific feedback in regards to your network and desired implementation.

    Regards,

  • 0 in reply to FloSupport

    To be honest, I'm pretty disappointed with resellers in my area, each and every one is able to give me a quote but no real advice so far. I feel like I know more about the Sophos products than the resellers I've chatted to so far. 

     

    Also, I don't think that my question was particularly difficult. I just need someone to point me towards the (Sophos) products/services I would need.

  • 0 in reply to PreHCM-PK

    Hi Ovidiu,

    At least on the Sophos XG policy side, you would configure your SSL VPN Remote Access Policy with the "Use as Default Gateway" option enabled.

    Use as Default Gateway
    • Activate the toggle switch if you want to use this as default gateway. If activated, all traffic is forwarded to a default gateway including external Internet requests. If deactivated, the traffic uses a split mode to separate traffic for internal network segments and external Internet requests through different gateways.

    However, forcing your clients/users to utilize a SSL VPN connection is another issue. This is the portion that you would need to decide and determine.

    Regards,

Reply
  • 0 in reply to PreHCM-PK

    Hi Ovidiu,

    At least on the Sophos XG policy side, you would configure your SSL VPN Remote Access Policy with the "Use as Default Gateway" option enabled.

    Use as Default Gateway
    • Activate the toggle switch if you want to use this as default gateway. If activated, all traffic is forwarded to a default gateway including external Internet requests. If deactivated, the traffic uses a split mode to separate traffic for internal network segments and external Internet requests through different gateways.

    However, forcing your clients/users to utilize a SSL VPN connection is another issue. This is the portion that you would need to decide and determine.

    Regards,

Children
No Data