Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 2 answers
  • Subscribers 27 subscribers
  • Views 874 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Connecting IPSec Remote to internal interface

Buket Bidik

I am trying to configure an IPSec connection to an internal interface which is clearly not in the WAN zone. The firewall seems to be listening only on WAN zone for IPSec connections. How can I achieve this? Im using Sophos XG 135. I want all my internal users to connect to the network via VPN.



This thread was automatically locked due to age.

Top Replies

  • FormerMember
    FormerMember +1 suggested

    Hi Buket Bidik,

    Thank you for reaching out to the Communtiy! 

    Unfortunately, the listening interface must be in the WAN zone for IPsec site-to-site VPN. It's not possible to configure IPsec site-to-site VPN on an interface that is in a LAN zone. 

    Thanks,

    Jump to answer
Parents Reply Children
  • FormerMember
    0 FormerMember in reply to Buket Bidik

    Hi ,

    The remote access VPN feature is designed for remote users and not for the users on the internal network. 

    However, if you really need your internal users to connect to the firewall through VPN, try to use SSL remote access VPN, since it by default can connect to all interfaces, it might work for the users in the LAN zone. 

    Thanks,