Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 28 subscribers
  • Views 1794 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN

Paul Michel

i am trying to set up a SSL VPN on XG106 with 17.5.14 MR-14-1 firmware, i have used KB-000035542. i can not access my network from a remote location, the error i keep getting is "The system tried to join a drive to a directory on a joined drive"

i believe this is a very common problem yet nothing i have tried has made any difference. is this a port forwarding problem? any help is appreciated.

this is  a screen shot of log in on remote computer.

thanks,

Paul M.



This thread was automatically locked due to age.
Parents
  • 0

    You do not have select a public IP. 

    Configure your "Overwrite Hostname" in VPN Config to configure a public IP of XG. YOu can also use a DNS. 

    XG has a own Dynamic DNS, if you do not have a DNS and a dynamic IP. 

  • 0 in reply to LuCar Toni

    Toni

    thank you for your reply

    i have placed our public ip in the overwrite host name and the error remains exactly the same, could you please explain how to use the XG dynamic DNS

    thanks,

    Paul M.

  • FormerMember
    0 FormerMember in reply to Paul Michel

    Hi ,

    Thank you for the update. Did you re-download the configuration after the overriding hostname with the public IP address? If not, please try with the new configuration file and let us know how it turns out for you. 

    More info on the XG as DDNS server: Sophos XG Firewall: How to configure the Sophos XG Firewall as a DDNS server.

    Thanks, 

  • 0 in reply to FormerMember

    H Patel,

    thank you for your reply, i am still struggling with this, i have contacted sophos support and the reply that i received i believe to be my problem.  My port B wan has a private IP address of 192.168.0.2 and our modem is using 45.XX.XX.183 public IP. this i think is causing the VPN port 8443 to get blocked when trying to connect from remote computer.

    this is the response from sophos support.

    1) Try configuring the IP address under the SSL VPN Server settings, of the SSL VPN client once.
    2) If it does not help, then navigate under Firewall GUI > VPN > SSL VPN > Global Settings > Override Hostname to public IP address of the WAN interface. Reimport the configuration from user portal and attempt.
    3) Please note that if interface is set to private IP address in presence of the upstream router deployed with public IP address e.g PortB-192.168.0.1 and upstream router has public IP address 1.2.3.4, then ensure that required SSL VPN default port 8443 is allowed.
    4) Take tcpdumps on the SSL VPN Port on the firewall and verify if requests are coming from the initiator’s Public IP address.

    Can you tell me how to right a firewall rule to allow this port, we are using a XG106 with version 17

    thanks,

    Paul M.

  • 0 in reply to Paul Michel

    Hi Paul,

    Do you have a static IP from ISP, if yes then configure your Modem in bridge mode and your WAN port in PPoE mode that way your WAN interface will get the Public IP assigned to you by ISP and then your SSL VPN config should work.

Reply Children
No Data