I'm a Systems Administrator with limited firewall networking experience and I'm having a heck of a time trying to figure this out. I want to install the XG125 behind an existing firewall where it can filter LAN traffic using the built-in applications. No problem there, works like a champ. But I also want it to be a remote access SSL VPN for offsite users to access resources on the LAN, but not access the internet through the VPN (I want them to use a split tunnel for that). The users can connect to the VPN successfully, but they can't access any resources on the LAN. What am I doing wrong? Would it be better to use the external IP of the Cisco and forward VPN traffic to the Sophos?
I currently have Port 1 and 2 of the XG configured as a WAN port and port 3 as a LAN port. Port 1 connects to 192.168.1.2 and port 2 connects to 66.0.0.195. I followed the instructions for Sophos XG Firewall: How to configure SSL VPN remote access. And that's where I'm stuck.
Anyone have any experience or suggestions with this?
This thread was automatically locked due to age.
