Hello,
I did take a look at the IPSec VPN for remote access in Sophos Firewall OS v19 and there is a value in the exported Provisioning file that i can't understand where the NGFW gets the value from.
The Value is "gateway" or "address" depending on configuration (.scx or .tgb).
I have search the forum, readed the documentation and can't find any information how this value is applied in the configuration.
When creating the IPsec VPN you only choose interface for the endpoint of the connection (for me WAN-Link/UpLink-interface) but in the configuration file it's add a FQDN/DNS entry and for me it's adding a not correct value (DNS/FQDN-entry). Where does NGFW get's this value from and how can you change this value?
It feels like the documentation needs to be better here. None of this (that I'm asking about) is explained in the documentation.
However when exporting the configuration to .tar.gz or downloading the profile from the User Portal to an ex. iOS device, it downloads the profile/configuration with the mystic DNS-entry/FQDN in it and I cannot seem to override this on the NGFW.
The configuration you download (.scx) and send to the users can be manual changed for value "gateway" but this does not works the configuration you download for iOS-device.
My theory is that it takes this value from the DNS-entry example the first DynDNS-value (if you have it configured on the firewall). Is that correct and how can you affect so instead correct DNS-value is applied?
Best Regards,
This thread was automatically locked due to age.
