Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Subscribers 27 subscribers
  • Views 486 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG Home SSL VPN

Mike Scott

Good afternoon,

How many SSL VPN server/listeners can be configured?  In short what I'm wishing is for two SSL VPN options, on full tunnel and one split tunnel etc.  I've done this previously with pfsense, but can't see a way of doing it with Sophos XG.  I've got a SSL VPN working fine, I must be missing something, being stupid.



This thread was automatically locked due to age.
Parents
  • 0

    You can configure some different SSL-VPN-profiles. (for example, one using some subnets and one full tunnel)

    But the user can’t select the profile by itself. The admin assign the profile to the user/group.


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

Reply
  • 0

    You can configure some different SSL-VPN-profiles. (for example, one using some subnets and one full tunnel)

    But the user can’t select the profile by itself. The admin assign the profile to the user/group.


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

Children
  • 0 in reply to dirkkotte

    Ah ok I think I know the profile setting.  Thank you  The other question is I can't define multiple SSL VPN listeners etc?  I.e. a UDP global setting and TCP based setting for one on more restricted guest networks etc.

    Multiple VPN IP ranges etc?

    I just export the profile and import it into OpenVPN on my iPhone and I can switch between profiles.

  • +1 in reply to Mike Scott

    Only one listener is possible.

    No option to use different ports (443/1194) or protocols (TCP/UDP) at the same time.


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

  • 0 in reply to dirkkotte

    Mmmm ok, many thanks.  That old chestnut of nice features of Sophos XG and then nice features of pfsense, but not in the same solution.  Have mulled setting up a VPN server running on a VM and then port forwarding to that etc.  So moving the VPN concentrator off the firewall etc.

Unfiltered HTML