Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 500 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Connect VPN Communicate between Clients

Edvvde

Hello everbody,

following situation:

- XG 115w with SOPHOS Connect IPSec in location A, LAN 192.168.100.0/24 and VPN 192.168.123.0/24

- Client 1 connected to LAN in location A and network 192.168.100.0/24

- Client 2 and 3 in different locations B and C running SOPHOS Connect Client

For example, a ping from the 2 Clients from B and C to Client A is possible. Also a ping from Client 1 to Client 2 and 3 is possible.

What we also need is, that it is possible to reach Client 3 from Client 2 and vice versa, so we need a communication between the clients connected to VPN in network 192.168.123.0/24.

For testing we created a rule VPN to WAN and VPN to VPN any, but that was not the solution. Can somebody help here?



This thread was automatically locked due to age.
  • 0

    Hello Edvvde,

    Thank you for contacting the Sophos Community.

    For this to work you need:

    1. A VPN to VPN rule, either wide open or it is recommended to only use the Sophos Connect IP address ranges for Source and Destination Networks

    2. Allow Ping on the VPN zone (Administration >> Device Access >> Local Service ACL >> VPN = Ping)

    3. You need to add the Range of IPs of Sophos Connect in the allowed networks for Sophos Connect. For example

    I would add these two IPs under Permitted network resources ( Please note you can add as an IP Range not one by one as I did)

    4. Have clients disconnect from the client and reconnect, so the routing table can re-populate.

    Note: During testing disable the Computers Local Firewall

    Regards,