Sophos Firewall

Discussions How Can I Route Traffic? All details Mention On picture.

Sophos Firewall requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 3 replies
Subscribers 26 subscribers
Views 313 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How Can I Route Traffic? All details Mention On picture.

nabin bhandari over 4 years ago

this both firewall is Sophos xg 85

This thread was automatically locked due to age.

Parents

0 Antonio Cienfuegos S over 4 years ago

Well, unless you create a VPN-WAN rulke, any computer that uses vpn ssl or ipsec shouldn't have internet access. Do you have more info?
Cancel
Vote Up 0 Vote Down

Cancel
0 nabin bhandari over 4 years ago in reply to Antonio Cienfuegos S

l3 ipsec vpn is used to connect HO. but BO PC now use HO internet, i want to block internet through IPsec VPN BO PC need to access internet on BO own internet.
Cancel
Vote Up 0 Vote Down

Cancel
0 Antonio Cienfuegos S over 4 years ago in reply to nabin bhandari

Probably, the IPSec is full tunnel (0.0.0.0/0) so basically everything will flow to the HQ. You have some options.

a) Make the IPSec include only the segments that you want to consume (ex: DMZ, Remote LAN, etc)

b) Create a PBR policy to route everything to the internet

First option is actually the recommended one. How do you have setup the IPSEC?
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Antonio Cienfuegos S over 4 years ago in reply to nabin bhandari

Probably, the IPSec is full tunnel (0.0.0.0/0) so basically everything will flow to the HQ. You have some options.

a) Make the IPSec include only the segments that you want to consume (ex: DMZ, Remote LAN, etc)

b) Create a PBR policy to route everything to the internet

First option is actually the recommended one. How do you have setup the IPSEC?
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data