Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 29 subscribers
  • Views 1215 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

always on VPN

David Harrison1

Hi all, 

I work from home and i'm looking for an always-on VPN solution.

we have 2 firewalls in the office, Firewall XG210 + Firewall XG125

Both have VPN setup for remote users to access the main office.

Now, I know about the RED devices (and i was using one for a while and it was a perfect solution. but had to return it)

Can I use an OpenWRT router or a windows app that does the same thing? just makes a permanent connection back to the office?

i'm using currently using the SSL VPN client which works in a fashion, but it seems clunky compared to the RED box.

Differences:

over RED, I had access to other VLANS in the office, everything seemed quicker,  when i did go into the office i could access my PC at home (RDP).

over SSL VPN its slower, i cant access all VLANs and I cant access my PC at home.

tia

Dave



This thread was automatically locked due to age.
Parents
  • 0

    It is possible to reach everything using SSL-VPN. That being said, if you do want an always-on connection there are two main ways to achieve it.

    1. Create a site-to-site VPN tunnel with whatever router you have lying around that supports it

    2. Setup a (virtual) XG firewall at home and option 1 is still available, but you can also create a RED connection between to XG firewalls. You can even configure a connection to both XG's at work to have a failover in case one goes down.

    In both scenario's you will need help from your company's IT-staff since both options need to also be setup from there.

    If you need help setting up XG at home, you can may want to read through this article on my blog or ask questions here.

  • 0 in reply to apijnappels

    yes... i like the idea of having my own XG at home.. (XG home version) i'll have a look and see how much that is. thank you !

  • 0 in reply to David Harrison1

    I do not want to spoil the fun, but you need to be careful about the XG Home usage for business applications. The EULA state, this product is only for consumers and people playing around. From a licensing perspective, this product is not allowed to be used to connect to a business and used as a replacement for a business application. 

  • 0 in reply to LuCar Toni

    Thanks LuCar. 

    I'll twist my directors arm and see if we can get another RED device. 

    I assume we can have multiple REDs on one Fw?

  • 0 in reply to David Harrison1

    Yes, you can use as many REDs as you like until the XG Firewall collapse because of to much load. 

    Another approach: Check a XG86/106 and use IPsec. Its included in the base license -> One time purchase. 

Reply Children
No Data