SSL VPN Split Tunneling

David,

on the SSL VPN profile, keep the "use as default gateway disabled" and you will get a Split Tunnel VPN.

Regards

Thanks Luk,

But can't seem to find this setting , is it in the firewall or on the actual client its self?

Thanks

David

David,

go to VPN > SSL VPN Remote Access TAB, click on your SSL Profile and disable the "use default gateway".

For every change, you need to download the VPN config again from user portal.

Regards

Luk,

Just went on to their XG, Default gateway is already disabled.

The User at home is on the same network range as the office.

Any other ideas?

Thanks 

David

Hi Dave,

Sorry for the tardy response, but I had came across your post yesterday as I had the exact same issue. Took me half a day, but I finally figured it out. XG lets you assign a remote access policy in two spots. One in the use config and the other in the Group type. It appears that the group type remote access policy (the one you don't see) takes precedence over the user config remote access policy.

It would be nice if Sophos would generate an alert when those two don't match.

Hi Dave,

Sorry for the tardy response, but I had came across your post yesterday as I had the exact same issue. Took me half a day, but I finally figured it out. XG lets you assign a remote access policy in two spots. One in the use config and the other in the Group type. It appears that the group type remote access policy (the one you don't see) takes precedence over the user config remote access policy.

It would be nice if Sophos would generate an alert when those two don't match.