This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSLVPN to reach device behind WAN interface devices

Hi.

I've tried to allow SSLVPN connections remotely to one of our Interface behind a router . It did not work out.

What works.
1.SSLVPN is fully functional for other subnets. (Except for 192.168.0.0/24)
2.Subnets behind PORT:A8 192.168.98.1/30 can ping devices after 192.168.0.0/24 internally.

What didn't work
1.Remotely SSLVPN connections cannot ping subnets behind interface A5: 192.168.0.2 including the interface as well.

I've tried installed SSLVPN over my home pc and tried to ping devices at 192.168.0.0 subnets and none worked.

Here's the picture of the setups.

Network Diagram

Interface Menu

Interface General Settings Port A5

Firewall Rule

SSLVPN Remote

This thread was automatically locked due to age.

Top Replies

emmosophos over 5 years ago in reply to ywillie +1

Hello Ywillie,

Adding to what my co-worker Harsh mentioned, also make sure that your TP-Link router, has a route back to the VPN subnet, also what mode is the TP-link configured?

I have sent you also a PM with some videos and RR that you have requested.

Regards,
Jump to answer

Parents

0 FormerMember over 5 years ago

Hi ywillie,

Thanks for reaching out to the Community!

The PortA5 network zone is configured as WAN, and the firewall rule isn’t configured to allow traffic from the VPN zone to the WAN zone.

Try to add a WAN zone in the destination zone and see if that works.

Thanks,
Cancel
Vote Up 0 Vote Down

Cancel
0 ywillie over 5 years ago in reply to FormerMember

Hi.
I did added this rule and seems it did not work out either.

Here' the Firewall Rule List. I turned off NEC2 because it didn't worked and i wouldn't want it to interfere with my other connections.
Cancel
Vote Up 0 Vote Down

Cancel
0 emmosophos over 5 years ago in reply to ywillie

Hello Ywillie,

Adding to what my co-worker Harsh mentioned, also make sure that your TP-Link router, has a route back to the VPN subnet, also what mode is the TP-link configured?

I have sent you also a PM with some videos and RR that you have requested.

Regards,

Emmanuel (EmmoSophos)

Technical Team Lead, Global Community Support
Sophos Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.
Cancel
Vote Up +1 Vote Down

Cancel

Reply

0 emmosophos over 5 years ago in reply to ywillie

Hello Ywillie,

Adding to what my co-worker Harsh mentioned, also make sure that your TP-Link router, has a route back to the VPN subnet, also what mode is the TP-link configured?

I have sent you also a PM with some videos and RR that you have requested.

Regards,

Emmanuel (EmmoSophos)

Technical Team Lead, Global Community Support
Sophos Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.
Cancel
Vote Up +1 Vote Down

Cancel

Children

No Data