Thread Info
  • State Verified Answer
  • +4 person also asked this people also asked this
  • Locked Locked
  • Replies 25 replies
  • Answers 1 answer
  • Subscribers 35 subscribers
  • Views 83919 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Connection may fail because IKE UDP Port seems to be blocked

Max Roberts

Hi,

I've upgraded to 17.5 and I am trying to use the new Sophos VPN Client and I get the above message when logging on. No connection can be created. Please help. I've tried turning off the firewall on my PC and my local router. Is there something else I need to enable on the Sophos XG?

Cheers,

Max



This thread was automatically locked due to age.
  • 0 in reply to Clemilton Clementino

    Thank you. This is good to know. I thought it will take an arm and a leg to get ISP to change the allowed ports. Anyways I am glad that you were able to get it resolved. So it is good information for other forum users can also use to resolve their problem when they run into a situation.

     

    Best Regards,
    Ramesh

  • 0 in reply to rfcat_vk

    Good day Ian,

    Hope you find this mail in good health , im getting a similar error message. When you say create firewall allowing IKE service, where should i be mentioning the port number

     

    Appreciate any assistance

    Thanks


    Raj

  • 0 in reply to Ruka

    Hi Raj,

    the XG comes with a predefined service for IKE.

    You add this to the firewall rule to replace what other ports you have in the services.

    If you still get the error follow some of the previous posters suggestions.

    Ian

  • 0 in reply to rmk_2018

    Hi Ramesh,

     

    Hope you find this mail in good health , im having similar issue , i have not created any firewall rules yet

    Have done the update via CLI

    Please find attached logs

    Also please advise if its the preshared key that has to be used as the password via connecting to Sophos Connect or the password allocated for each user0184.scvpn.log

    Appreciate any assistance

    cheers

  • 0 in reply to rfcat_vk

    Thanks Ian for your message

    Have created a firewall rule as below :

    Source , Source Network , Destination and Destination Network as Any 

    Services as IKE

    Added required user to user or groups

    Use Outbound Address : MASQ ( since it asked for a NAT policy )

    Hope its right config