Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 26 subscribers
  • Views 841 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Unblocking VPN L2TP IpSec

G A1

I would like to allow one of my clients (192.168.A.X) to do their own VPN connections to a remote location (192.168.B.X)

I do not see anything in the logs or live capture.

I created an FW rule which allows any to any and disabled  IPS just for testing.

I tried a FW rule where the source/destination is 192.168.A.X or 192.168.B.X. 

My understanding of all of this is very limited. I was hoping to avoid the VPN section and just allow the traffic to pass the FW. 

The log of my client L2TP is:

Wed Feb 23 15:40:26 2022 : L2TP connecting to server 'the remote public IP'..
Wed Feb 23 15:40:26 2022 : IPSec connection started
Wed Feb 23 15:40:26 2022 : IPSec phase 1 client started
Wed Feb 23 15:40:36 2022 : IPSec connection failed

Any help would be appeciated.



This thread was automatically locked due to age.
Parents
  • 0

    Hello there,

    Thank you for contacting the Sophos Community.

    Could you please share a diagram of what you are trying to achieve?

    Did you configure L2TP on the XG and your user/customer connects to this XG and you want to re-route this L2TP traffic to a different location? How does the other location connect to the XG?

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
  • 0 in reply to emmosophos


    I just want to connect to a remote Network via 

    L2TP/IPSec RSA

    I have a pre-shared key and username/password.

    If I use my old Router instead of the Sophos Firewall it works fine: I can use the VPN client on any workstation. There is no need to tunnel my whole (local network). However, I could do that too.

    I tried disabling all rules:

    And connecting via VPN client on the Workstation. The VPN connection can not be open and is blocked in the firewall. However, no logs and no entry in capture.

    I saw the L2TP remote access settings in the firewall. However, it seems as it does not support user credentials via username/password. I do not have an AC in my local network.



    I checked the VPN settings in Sophos but could not figure out which

Reply
  • 0 in reply to emmosophos


    I just want to connect to a remote Network via 

    L2TP/IPSec RSA

    I have a pre-shared key and username/password.

    If I use my old Router instead of the Sophos Firewall it works fine: I can use the VPN client on any workstation. There is no need to tunnel my whole (local network). However, I could do that too.

    I tried disabling all rules:

    And connecting via VPN client on the Workstation. The VPN connection can not be open and is blocked in the firewall. However, no logs and no entry in capture.

    I saw the L2TP remote access settings in the firewall. However, it seems as it does not support user credentials via username/password. I do not have an AC in my local network.



    I checked the VPN settings in Sophos but could not figure out which

Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?