SSL-VPN user based rules - sophos-xg

The Match user based replaces the Source part in a firewall rule.

Does the rest match? Destination and Service need to match the traffic. 

really? its not an additional filter? 

Here is the full rule:

If this is not the correct way to make a rule per user please point me in the right direction.

really? its not an additional filter? 

Here is the full rule:

If this is not the correct way to make a rule per user please point me in the right direction.

Likely your vpn_ip_range is not matching or your LAN + Networks is not matching.

Basically: The firewall will use Source networks and destination networks and will replace Source Networks with user based information in Live users. 

So feel free to try VPN + ANY and use user matching. 

well. if the subnets were incorrect the rule would not be working without the "match known users" checkbox. 
I have tested it with any any and i get the same Problem. The rule is working and applied if i disable the checkbox. if i enable the checkbox the rules does not apply.

So is there any other way to have multiple SSL-VPN connections with different Rules for different access

Maybe one object is broken. Try to resave all your used object. Is one object giving a error by saving? 

I deleted all user groups and added them again. reininstalled Sophos connect. No change. I can connect but then all packets are blocked. i think the user is not recognized. maybe im missing an option:

Additional Info - local users and "any" in match known users doesnt work either