Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 26 subscribers
  • Views 503 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSLVPN to reach device behind WAN interface devices

ywillie

Hi.

I've tried to allow SSLVPN connections remotely to one of our Interface behind a router . It did not work out.



What works.
1.SSLVPN is fully functional for other subnets. (Except for 192.168.0.0/24)
2.Subnets behind PORT:A8 192.168.98.1/30 can ping devices after 192.168.0.0/24 internally.

What didn't work
1.Remotely SSLVPN connections cannot ping subnets behind interface A5: 192.168.0.2 including the interface as well.

I've tried installed SSLVPN over my home pc and tried to ping devices at 192.168.0.0 subnets and none worked.

Here's the picture of the setups.

Network Diagram

Interface Menu

Interface General Settings Port A5

Firewall Rule

SSLVPN Remote



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi ,

    Thanks for reaching out to the Community! 

    The PortA5 network zone is configured as WAN, and the firewall rule isn’t configured to allow traffic from the VPN zone to the WAN zone. 

    Try to add a WAN zone in the destination zone and see if that works. 

    Thanks,

  • 0 in reply to FormerMember

    Hi.
    I did added this rule and seems it did not work out either.


    Here' the Firewall Rule List. I turned off NEC2 because it didn't worked and i wouldn't want it to interfere with my other connections.


  • 0 in reply to ywillie

    Hello Ywillie,

    Adding to what my co-worker Harsh mentioned, also make sure that your TP-Link router, has a route back to the VPN subnet, also what mode is the TP-link configured?

    I have sent you also a PM with some videos and RR that you have requested.

    Regards,

Reply
  • 0 in reply to ywillie

    Hello Ywillie,

    Adding to what my co-worker Harsh mentioned, also make sure that your TP-Link router, has a route back to the VPN subnet, also what mode is the TP-link configured?

    I have sent you also a PM with some videos and RR that you have requested.

    Regards,

Children
No Data