Hello community,
I am facing a problem setting up the SSL VPN access for clients:
Here are the basic parameter:
| Local Network | Sophos XG 17 on VPS | (SFOS 17.5.9) | ||
| Network with Internet-Access | 192.168.200.0/24 | -- | WAN-IP (Port 1) | 2.56.98.42 |
| Client Network | 192.168.201.0/24 GW: 192.168.200.1 |
-- | Internal LAN (Port 2) | 192.168.230.0/24 |
My aim is, that a device from "Client Network" can access resources in "Internal Network".
I have done the following steps:
- I have logged into the Sophos Firewall on 2.56.98.42 and headed for Hosts and Service -> IP-Host
- I have created two entries:
- 1st local: 192.168.201.0/24
- 2nd local: 192.168.200.0/24
- I have created a new user group "Remote SSL VPN User Group" under Authentication -> Groups. Traffic / time unlimited.
- I have created a separate user under Authentication -> User, set a password, assigned him to the new group and gave him administrative access.
- I headed for VPN -> SSL-VPN-Access and created a new policy.
- I have added the new user group
- I have added both local networks (192.168.200.0/24 and 192.168.201.0/24) as permitted networks under Tunnel Access
- I have activated User Portal and SSL VPN via WAN unter Administration -> Appliance Access
- I went to Firewall and created a new rule:
- Source "VPN" and Source Networks both local networks (192.168.200.0/24 and 192.168.201.0/24)
- Destination "LAN" and Destination Network is the LAN-Network defined on the firewall (192.168.230.0/24)
Finally, I logged into the User Portal, my credentials were accepted, but no download starts after clicking "Download Configuration" under SSL VPN. I have tried download this on iPad and MacOS (Safari and Chrome).
I have also read the KB-Entry KB-000041377, which does not seems to apply to my case.
This thread was automatically locked due to age.
