Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 616 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN ne fonctionne plus en V19

CyrilleM

Bonjour 

Sur un XG230, la mise à jour 18.5MR3 vers 19.0GA a été proposée dans la mise à jour de firmware.

J'utilise plus de 50 clients en connexion VPN SSL

Aucun soucis en version 18.5 MR3. Je ping bien IP serveur de destination, aussi bien par ping sur nom que ping sur IP

En version 19.0 GA, le ping ne passe plus ni sur le nom ni sur l IP.

Le client VPN se connecte bien (feu passe bien au vert), mais les connexions des clients en RDP ne fonctionnent plus.

Je ne vois pas de trace précise dans la visionneuse 

Avez vous des pistes?

Cordialement.



This thread was automatically locked due to age.
  • 0

    Hello there,

    Thank you for contacting the Sophos Community

    The SSL VPN Client isn’t longer supported, and it’s already EoL. 

    I would suggest you use the Sophos Connect Client, in case you need to open a case.

    Other than that, try doing a TCPdump on the advanced shell of the XG to confirm the packets are arriving to the XG

    # tcpdump -eni ipsec0 host 172.16.30.10 (change the Ip to one being used for the client)

    If you see packets arriving to the XG via the ipsec0 then do a GUI Packet Capture to confirm the correct firewall is being hit and any NAT rule you might have configured for this traffic.

    Regards,

  • 0 in reply to emmosophos

    Hello there,

    Additionally to what I mentioned above, if you set a range object for your Firewall rules for VPN to LAN, take a look at this Recommended Read.

    SSL VPN "IPv4 lease range" changes in SFOS v19.

    Regards,

  • 0

    Bonjour

    Je voudrais savoir.

    Est ce un soucis du client VPN ou de réglage à faire une fois la mise à jour 18.5 vers 19 faite?

    Les réglages concernent l'inscription des hôtes? ou faut il régler d'autres choses pour que les applications, ping.... passent à travers le client VPN?

    Cordialement

  • 0 in reply to CyrilleM

    Hello,

    For the Link I posted, it would be a change you need to make either before or after you upgrade to v19, so your Firewall Rule will still apply, that is, if in your Firewall Rule for VPN traffic, you created an entry under Source networks and devices for the Range of SSL VPN. I would recommend you to change after the upgrade has been done.

    Regards,