Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 492 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Clintless Access

Wisam Mouslli

Hi, We have Sophos XG firewall in our company acting as end Point VPN and we have a scenario in which a user in other location of enterprise (not managed by us) needs to access some files in our network but his VPN (provided by us) is not working because of some restrictions of Firewall where he is locating. Can we use Clintless Access as a solution for this problem (perhaps bypassing the restriction of their local firewall) if yes could you please explain how could we provide Clintless access for that certain user? Thanks.



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi ,

    Thanks for reaching out to the Communtiy! 

    Could you explain the restrictions on the other location that prevent users from connecting to the XG firewall via VPN? Did you configure the site to site VPN, and is it not working? 

    Thanks,

  • 0 in reply to FormerMember

    Thanks for your reply, we don't have visibility on the other location Firewall as it's out of our management area, there is no Site to Site VPN but we have provided client VPN to the certain user in that location, I will try to get more information on the restrictions there but probably blocked ports.

  • FormerMember
    0 FormerMember in reply to Wisam Mouslli

    Hi ,

    The remote access VPN(IPsec or SSL) would work as long as the required ports are allowed and no advanced filtering configured(Web and Application protection) on the remote firewall for certain users.

    Thanks,

  • 0 in reply to Wisam Mouslli

    What type of VPN have you provided? IPsec is often blocked by corporate networks (and some hotels) but SSL VPN is often more successful as it only runs over port 443 and is therefore much harder to block, it depends on 'intelligence' of the corporate firewall.

Reply
  • 0 in reply to Wisam Mouslli

    What type of VPN have you provided? IPsec is often blocked by corporate networks (and some hotels) but SSL VPN is often more successful as it only runs over port 443 and is therefore much harder to block, it depends on 'intelligence' of the corporate firewall.

Children
No Data