Secure Web Browsing Functionality Question

Tsukasa,

can you give us more details? The question is not clear.

Please take note that users that use Bookmarks or VPN (full tunnel) uses XG as their gateway, so you will see XG public IP and not the VPN User's public IP.

Regards

Tsukasa,

can you give us more details? The question is not clear.

Please take note that users that use Bookmarks or VPN (full tunnel) uses XG as their gateway, so you will see XG public IP and not the VPN User's public IP.

Regards

I have remote users who need access to a few web sites as if they were local to the XG due to geo location restrictions of these sites.

I have attached to the user a clientless profile that contains these links. I have added whatismyip.com as one of these sites to see if I would get the XGs ip or the remote IP.

Testing this, I get my local IP address and not the address of the XG even thought the URL is that of the XG and the URL passed as parameters to it.

I hope this is a clearer description.

Sorry, but you have not included any additional information. Why don't you have the users vpn into the XG and be done with it, no further questions.

What additional information are you looking for? I thought what I'm trying to do was written pretty clear.

lferrara said that I should get the XGs address by using bookmarks in clientless mode but this doesn't seem to be the case.

I can gladly provide any other information you need I'm just not sure what else is needed.

Tsukasa,

thanks for the additional information. Bookmarks are used to access internal resources and not Internet URL. Bookmarks are a HTML5 VPN portal, where users ,once logged in, can access internal resources using ssh, rdp, http/s, etc..

Internet URLs will not pass using XG but your internet connection.

More info here:

http://docs.sophos.com/nsg/sophos-firewall/v16053/Help/en-us/webhelp/onlinehelp/index.html#page/onlinehelp%2FBookMarkManage.html%23

Regards

Thank you for the explanation and link.

So clientless access still requires the VPN connected via the SSL client and the published items can only be internal. So secure web url and bookmarks containing external resources will still be external?