Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 26 subscribers
  • Views 551 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

no resources with SSL VPN - connection ok, ping ok

Zerry Zakman

This same issue have been discussed here dozen times. I have tried every solution I could find but still no solution. So, anyone good ideas how to get this working.

I use OpenVPN Client for the connection which seems to work fine. Every time and all the time. With VPN I can ping LAN resources. But when I try to connect to shared folder or connect to web service no connection. No refuse, just wait and service cannot be found. LAN itself works fine and all resources are available in LAN. But through VPN no resources work. None. When i allow admin thru VPN it works fine. So, there must be something with the rule which do not allow me to open resources (?) but I cannot figure out what.

Connection is DDNS and NAT'd both in client and server sides.

Here are the main setup screens (some ID data blurred and couple of notes in red):

I've tried with default gateway on/off, with different ip ranges, with/without DNS, with local destination and with any destination. None works. Just in case after every change I have tried with new configuration file from user portal.

Anyone have ideas?

PS. Please Sophos personnel, because of lots of questions about the same thing this seems to be an issue for non-pros and it would be really nice if there would be wizard for VPN.



This thread was automatically locked due to age.
  • FormerMember
    0 FormerMember

    ,

    Thank you for reaching out to the Community! 

    Are you able to access the shared folders and web services using the IP address? The configuration screenshot "SSL VPN Settings" has no domain name or internal DNS server configured. Have you added the domain name and internal DNS servers and redownloaded the configuration? 

    Thanks,

  • 0 in reply to FormerMember

    I can access all the resources on inside LAN normally with IP address. I use only IP addresses in all LAN systems, not name services. But through VPN I can only ping IP not connect to them. The resources do not respond at all. Something is blocking access totally. But still I can ping which means that at some OSI levels there is a connection.

    I do not have separate DNS in LAN in server side. What should I put as domain name if I do not have own domain name server in the system? I tried the same as in "override hostname" in "SSL VPN settings" but no luck. I tried with cloudflare and google DNS but no positive effect (1.1.1.1 and 8.8.8.8).

    Client side system has pihole but it does not have effect on this. I have tried using at client side another gateway and router and still no resources meaning that the problem is not in client side.

    After every change in configuration I have reloaded configuration file from user portal and installed it as conf in OpenVPN.

    What I noted is that client side VPN connection gateway is empty after feeding the internal DNS server. Screenshot below.