Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 754 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to add FDQN host in Sophos SSL VPN "Permitted Network Resources" under Tunnel access

Krishna G

I have set up SSLVPN in SophosXG for remote users. There is a URL that doesn't have a static IP Address and it has to be routed via SSL VPN from a remote location. 

Note: This URL is not accessible publicly but whitelisted our office network.

Can anyone help with fulfilling this requirement?



This thread was automatically locked due to age.
Parents
  • 0

    Hi : In the SSL VPN permitted networks as of now you are allowed to add or select only IP host or IP network-based object. FQDN, IP list, FQDN group are not allowed to select there.

    To fulfill this requirement the only available way is to switch the SSL VPN policy from split tunnel to full tunnel by turning on "Use as default gateway" under Tunnel access in SSL VPN (remote access) policy settings.

    So those users who required the URL access -for those specific users or user groups you may create a full tunnel SSL VPN as per above and their Browsing traffic will be routed to XG via VPN to WAN rule if a rule has been configured on XG.

    Regards,

    Vishal Ranpariya
    Technical Account Manager | Sophos Technical Support
    Sophos Support Videos | Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link.

Reply
  • 0

    Hi : In the SSL VPN permitted networks as of now you are allowed to add or select only IP host or IP network-based object. FQDN, IP list, FQDN group are not allowed to select there.

    To fulfill this requirement the only available way is to switch the SSL VPN policy from split tunnel to full tunnel by turning on "Use as default gateway" under Tunnel access in SSL VPN (remote access) policy settings.

    So those users who required the URL access -for those specific users or user groups you may create a full tunnel SSL VPN as per above and their Browsing traffic will be routed to XG via VPN to WAN rule if a rule has been configured on XG.

    Regards,

    Vishal Ranpariya
    Technical Account Manager | Sophos Technical Support
    Sophos Support Videos | Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link.

Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?