Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 27 subscribers
  • Views 13732 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

In SSL VPN why are the ads not filters nor the country blocks applied?

Pickle Rick

I can SSL VPN into my network but none of the AD blocks or filters apply, why?



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to Pickle Rick

    Hi Rick,

    the rule isn't passing any traffic. So, where is the traffic going?

    Secondly, some of the country blocking is wrong in the XG. I found I had to disable country blocking because it blocked some website in the US and AU eg ntp servers. The incoming country blocking does not work, hopefully Sophos will fix this in v17.1

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

Children
  • 0 in reply to rfcat_vk

    Great so XG is a continual broken experiment using users as beta testers....it's been what 3 to 4 years since the acquisition of cyberfoam, like honestly, UTM 9.x had their ducks in order within a year after acquring Astaro...but I digress.

     

    I followed this guide to set it up....so where did I go wrong?

     

    community.sophos.com/.../122769

  • 0 in reply to Pickle Rick

    Try disabling your country block rules and see if that works.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Kind of counter productive but will try it tomorrow.  The undocumented "having country blocks will fck your ***/security up" rule.

     

    Honestly I am on a verge of untangle but I don't feel like spending few days reseting the setups that's the only thing keeping me away...it's my lazinies and the hope that XG17 will finally get *** right. 

  • 0 in reply to Pickle Rick

    UTM works great if you have less that 50 IPs.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Ok I tested it with even removing the VPN rule and it still worked regardless so WTF is going on!  Could someone from SOPHOS answer this?!  I mean do those folks even watch these forums or is it a blind leading the blind here?

     

    I have followed the rules mentioned above so if the SOPHOS rules directed instructions can't help me then what can?  I mean this is pushing users more and more towards UNTANGLE solution which I left 5 years ago but honestly this should be BE THE NEXT GEN FIREWALL and IT'S ANYTHING BUT THAT, IT'S MISSING AUTO IP SCAN BAN for the LEAST AND LOWEST REQUIREMENT TO BE THE NEXT GEN FIREWALL HAHAHAA> 

  • 0 in reply to Pickle Rick

    Pickle,

    did you enable the "use default as gateway" on your SSL VPN profile? Otherwise internet traffic will flow out your router and will not use the XG.

    Regards

Cookie Information Banner