Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 28 subscribers
  • Views 1794 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN

Paul Michel

i am trying to set up a SSL VPN on XG106 with 17.5.14 MR-14-1 firmware, i have used KB-000035542. i can not access my network from a remote location, the error i keep getting is "The system tried to join a drive to a directory on a joined drive"

i believe this is a very common problem yet nothing i have tried has made any difference. is this a port forwarding problem? any help is appreciated.

this is  a screen shot of log in on remote computer.

thanks,

Paul M.



This thread was automatically locked due to age.
Parents Reply Children
  • FormerMember
    0 FormerMember in reply to Paul Michel

    Hi ,

    Thank you for the update. Did you re-download the configuration after the overriding hostname with the public IP address? If not, please try with the new configuration file and let us know how it turns out for you. 

    More info on the XG as DDNS server: Sophos XG Firewall: How to configure the Sophos XG Firewall as a DDNS server.

    Thanks, 

  • 0 in reply to FormerMember

    H Patel,

    thank you for your reply, i am still struggling with this, i have contacted sophos support and the reply that i received i believe to be my problem.  My port B wan has a private IP address of 192.168.0.2 and our modem is using 45.XX.XX.183 public IP. this i think is causing the VPN port 8443 to get blocked when trying to connect from remote computer.

    this is the response from sophos support.

    1) Try configuring the IP address under the SSL VPN Server settings, of the SSL VPN client once.
    2) If it does not help, then navigate under Firewall GUI > VPN > SSL VPN > Global Settings > Override Hostname to public IP address of the WAN interface. Reimport the configuration from user portal and attempt.
    3) Please note that if interface is set to private IP address in presence of the upstream router deployed with public IP address e.g PortB-192.168.0.1 and upstream router has public IP address 1.2.3.4, then ensure that required SSL VPN default port 8443 is allowed.
    4) Take tcpdumps on the SSL VPN Port on the firewall and verify if requests are coming from the initiator’s Public IP address.

    Can you tell me how to right a firewall rule to allow this port, we are using a XG106 with version 17

    thanks,

    Paul M.

  • 0 in reply to Paul Michel

    Hi Paul,

    Do you have a static IP from ISP, if yes then configure your Modem in bridge mode and your WAN port in PPoE mode that way your WAN interface will get the Public IP assigned to you by ISP and then your SSL VPN config should work.

  • 0 in reply to FormerMember

    All problems finally solved.

    i set up the SSL VPN using KB-000035542 the first problem of not being able to connect was being caused by our modem, it is provided to us by our Internet provider and was giving us a private IP, we needed to call them and make a change so that we would be getting a public ip. that fixed so we were then able to connect  but then we could not access anything on the lan. after contacting sophos support they found that in Administration > Device Access, the Ping was not enabled for the  VPN.

    It is now working, thanks for all the help.