SSL VPN ISSUE Version - SFOS 19.0.1 MR-1-Build365

Question

SSL VPN ISSUE Version - SFOS 19.0.1 MR-1-Build365 
 VPN is connected but Issue faced. 
 1 . SSL VPN Gateway Is reachable. 2 .Network that are in sophos Firewall are reachable (Port-1 -- 192.168.100.1/24 -- Server = 192.168.100.10/24) Interface IP address and server IP address of Same nettwork is reachable. 3. Network that are not is sophos firewall and are in remote location are not reachable. 4. route entry on client laptop is fine. 5. From Sophos(Port-2) to Fortigate(Port) Directly connected with IP 192.168.101.1/24 on sophos and 192.168.101.2/24 on fortigate from sophos 192.168.101.2 is reachable but from SSL VPN client 192.168.101.2 is not reachable. 
 6. From Sophos interface IP all outside network are reachable but from SSL client same ip is not reachable. 
 7. nabil.lamichhane user of ssl client is connected to pc1 and having above problem at the same time if same user connect ssl vpn from pc2 and try to reach above ip then its working fine. 
 This type of problem occur randomly in any client/pc at any time.

emmosophos · Answer

Hello there, 
 What do you mean by networks outside of Sophos Firewall? (Public Networks or networks that connect to the Firewall via another Firewall/VPN (IPsec)? 
 Suppose the issue gets resolved after disconnecting and reconnecting. In that case, you&rsquo;ll need to compare via a GUI Pcap what Firewall rule is being hit when the connection is working properly and what rule is being hit when it stops working, same as doing a drop packet capture from the Advanced Shell of the Sophos Firewall. 
 How is the SSL VPN configured currently as a Split tunnel or "Use as Default Gateway"? 
 Clarify what IP the SSL VPN client is getting. You'll get routing issues if you&rsquo;re using an overlapping IP with a subnet in the Firewall. 
 Regards,