Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 25 replies
  • Answers 3 answers
  • Subscribers 30 subscribers
  • Views 14942 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Firewall connecting to NordVPN

Fabio Teixeira

Sophos Firewall connecting to NordVPN

Hi

I'm user of Untangle at my home/homelab. I'm trying Sophos Firewall to see if i switch from Untangle to Sophos Firewall.
I'm from Brazil but i live in Canada, because of my country of origin i have to use an VPN like NordVPN to "tell" to brazilian service providers (like banks, governement sites and etc.) that "i'm in brazil".


So not having a way to connect to a VPN service like Nord VPN and route my trafic over NordVPN can be a deal breaker.


I researched and i'm not sure if its possible or not possible to do this.


Can you tell me if i can connect to an VPN service like NordVPN and route my trafic over there in Sophos Firewal?


I think i have the newest version, i started to test it yesterday.

Thanks guys.



This thread was automatically locked due to age.
Parents
  • 0

    Have you looked at Site-to-Site VPN > SSL VPN > Client > Add? That's how you add a site-to-site SSL VPN connection if you have the appropriate server's configuration file -- which I assume you do for your NordVPN.

    And this is what you are asking for: a site-to-site connection where your XG is the branch office and NordVPN is the main office.

    There are lots of other resources at Sophos and in the help referring to routing, etc, with a branch office and main office setup. Unlike some consumer firewalls, Sophos by default drops everything, so you will have to first set up the routing you want, then set up firewall rules to allow that traffic. For the firewall rules, you will want to take advantage of Zones.

    This is only true IF NordVPN truly supports open standards VPN clients and provides you with open standards VPN config files. If NordVPN does not do this, then it's a nice feature that Untangle has that it will work with a proprietary "main office", but that's an anti-customer choice by NordVPN if that's the case. Which wold force you to use a consumer-oriented firewall that caters to NordVPN.

    (To be fair, it's also possible that the XG only accepts configuration files from other XG's. I doubt it, since the main office could have Cisco's, SonicWall's, etc. But you can probably reverse-engineer the (presumably JSON) config file if that's the case.)

  • 0 in reply to Wayne Folta

    Hi

    That helped.

    Now the only thing its NordVPN uses Username/Password authentication for the IPSEC VPN Connections. I didnt find a Way to get and Preshared Secret or an RCA Secret from NordVPN.

    Do you know if its possible to configure Sophos to autenticate to another server using Username/Passowrd?

    Thanks.

Reply
  • 0 in reply to Wayne Folta

    Hi

    That helped.

    Now the only thing its NordVPN uses Username/Password authentication for the IPSEC VPN Connections. I didnt find a Way to get and Preshared Secret or an RCA Secret from NordVPN.

    Do you know if its possible to configure Sophos to autenticate to another server using Username/Passowrd?

    Thanks.

Children
No Data
Unfiltered HTML