Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 28 subscribers
  • Views 1076 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Connect Client allow access to remote sites

fireb

Hi,

i want to configure the Sophos Connect Client to access the main network and two remote Sites.

Here is an quick overview of my current network configuration:

Main Office (XG125): 10.1.1.0/24

Branch Office 1: 10.1.2.0/24

Branch Office 2: 10.1.4.0/24

 

If I now connect to the main office with the client, then I cannot access the two branches. In the sophos connect client settings i set an IP- Range inside the main office range but then i can only access the two branches and no longer access the main office network.

If I use another range, such as 10.1.10.100 to 10.1.10.200, then I can only access the main office.

Can you tell me what I'm doing wrong?

 

Best regards

fireb



This thread was automatically locked due to age.
  • 0

    Hi  

    I would suggest, connect Main office and BO1 via IPSec , same way for BO2, if there is a possibility of same based on remote end router or firewall.

    Site-to-Site IPsec VPN connection using a preshared key:

    https://community.sophos.com/kb/en-us/123140

    In this IPSec settings in the Main office side in local LAN network define LAN network and Sophos connect client network in the local LAN, vice versa define network on remote end BO1 and Bo2. Create VPN to VPN rule on HO and confirm the status.

  • 0

    Hello

    I assume that your branch offices are connected by IPSec tunnels?

     

    You will need a firewall rule for VPN to VPN traffic to forward the Sophos Client IP range to the other IPSec tunnels

    You will need routing entries at the other firewalls to route back to the Main office Sophos for the Connect Client Range

     

    Regards

  • 0 in reply to GavinDaniels

    Hello,

    sorry, I forgot to say. The branch offices are connected over site 2 site SSL-VPN. Does that also work?

    This is the Firewall Rule on the Main Firewall. I created the same rule on the firewall in the branch office.

    Access works perfectly from both sides. Except via the Sophos Connect Client, where I can only access the network in the main office.

     

    Regards