I have an XG 85 firewall 17.5.14 MR-14-1 and currently using a split tunnel VPN for my users. I have a new request to add a VPN using a full tunnel. The requirement is to allow my exec to vpn from their iphone with no need for internal resources. In configuring my L2TP on the firewall, I have a policy and a rule group. I have had no success in making a connection from an iphone. My understanding is that you cannot have a Full Tunnel and a Split tunnel at the same time. Is that the case for a split and L2TP tunnel?
In troubleshooting, I am not able to make the connection to see any logs or determine incorrect setup. I'm using a pass phrase instead of a certificate. I used this document for the buildout https://support.sophos.com/support/s/article/KB-000036443. It's a simple build but for some reason I cannot make the connection. My tunnel is active and I have checked numerous times on the build. Does anyone have any ideas or is this a limitation to the appliance.
Policy Config
Source: VPN
Source Network: Any
Destination: WAN = I used WAN as there's no need for internal resources
Destination Services: Any
No Matched users
Gateway of the WAN
Rule Group: As per the document
This thread was automatically locked due to age.
