Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 2 answers
  • Subscribers 26 subscribers
  • Views 9592 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN Client

John Loy

I have installed the SSL Client but it seems to be tied to one XG.  I need to have access to about 15 different XG firewalls.  I need this so that I can turn off the WAN management and just SSL VPN in an XG and get access to the management in case the site to site connection goes down.  Is there a good way to handle this issue?



This thread was automatically locked due to age.
Parents
  • 0

    John,

    each SSL VPN configuration includes XG wan ip, dhcp,etc....but what is unique is the Certificate. Each user will have its own certificate generated by XG CA.

    You cannot use the same SSL VPN config across different XG.

    In order to manage XG properly, use SFM. Do not leave the WebAdmin open on WAN side.

    Regards

  • 0 in reply to lferrara

    I understand but some of the VPN clients I have worked with allowed me to have a drop down box and I can switch between configurations.  I know I have done this with IPSec, not sure if I have done it with SSL VPN but I thought someone did it.  I understand that you just repackage OpenVPN, so is there a client out there that works with you that could manage the different connections.  I like the idea of SFM and I will look into it but SFM does not give me all the flexibility of a VPN connection.

  • 0 in reply to John Loy

    John,

    if you are using SSL VPN, you can have multiple VPN configuration and select from the traffic lights icon, the ssl config where you want to connect to.

    SFM is a pwoerful console. From there, you can see live logs and manage all your XG as you were sitting in front of them.

    Regards

Reply
  • 0 in reply to John Loy

    John,

    if you are using SSL VPN, you can have multiple VPN configuration and select from the traffic lights icon, the ssl config where you want to connect to.

    SFM is a pwoerful console. From there, you can see live logs and manage all your XG as you were sitting in front of them.

    Regards

Children
  • 0 in reply to lferrara

    Thanks for the answers.  I found a very nice OpenVPN client that can manage all the connections for me and will just suck in your config and it cost me $9.  I am going to look at SFM for day to day management but I really needed something that was easy and intuitive to use to manage all the SSL VPN connections for me.  SFM is very cool but is very limited in managing the FW only and does not meet the need of getting access to the different client networks when things go awry.