L2TP Remote Access - Mikrotik (Client) Sophos XG (Server)

Hi,

your ACL configuration is wrong, with that configuration very little will pass through the firewall regardless of firewall rules eg no web proxy no secure access to the XG GUI.

Are you suing the XG logviewer to determine the failure reasons?

Where is the Mikrotik located?

What version of XG are you running?

Ian

Hi,

your ACL configuration is wrong, with that configuration very little will pass through the firewall regardless of firewall rules eg no web proxy no secure access to the XG GUI.

Are you suing the XG logviewer to determine the failure reasons?

Where is the Mikrotik located?

What version of XG are you running?

Ian

The log is nothing...

Log TCP Dump:

Mikrotik is in the branch

You need to allow VPN on the WAN and you do not need DNS on the WAN.

The VPN terminates on the WAN interface not the internal interface.

Ian

Maybe I don't understand ...

Where do I allow VPN for WAN?

The ACL print was wrong, now I'll send it the way it is.

Thank you

Hi,

the GUI -> VPN -> L2TP (remote access).

Ian

Obviously hehe ... L2TP is enable and my user in add members

VPN >> L2TP (remote access)

Configuration:

In remote host, I put the branch IP to test with cross NAT enabled and then disabled but it did not work.

**The settings were already done ...

Please try searching some of the threads in this link

https://search.sophos.com/#q=mikrotik&t=All&sort=relevancy

Also hopefully a mod/support person will review your request.

Ian

Hi,

Tks for reply. I'll continue my research.