Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 2 answers
  • Subscribers 27 subscribers
  • Views 13570 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Need pptp- or l2tp-client to ISP

Jochen Held

Hi,

i Need to Setup a pptp- or l2tp-client-connection to a isp, which gives me over this Connection a fixed IP-address.

How it is possible to Setup this Connection?

 

Regards



This thread was automatically locked due to age.
Parents
  • 0

    Held,

    do you need to allow internal users to connect to external VPN or do you need to use XG as VPN Server and configure fixed ISP IP on XG WAN side?

    Thanks

  • 0 in reply to lferrara

    I Need the mail-traffic (Exchange-Server) to receive and send through the ISP with the fixed IP, using the dynamic-ip-ISP-A-connection.

     

    Explanation of the installation:
    * ISP A with dynamic IP connected through a Fritzbox
    * ISP B with fixed IP based on a VPN-Tunnel routed through the Connection of ISP A (L2TP or PPT or OpenVPN)

    * actual i use a Sonicwall 2040: X3 is the WAN-Interface (exposed host of Fritzbox) and X1 goes through the guest-function of fritzbox over the ISP A with VPN to the ISP 2

    * the connection to ISP B is solved as a L2TP-connection (Client) and all mail-server-traffic is routed through this tunnel.

     

    i try to Setup the XG in a similar way as the Sonicwall.

     

     

  • 0 in reply to Jochen Held

    Jochen,

    for the incoming traffic, edit the MTA Firewall Rule, XG creates when you switch to MTA mode. Use outbound address:

    https://community.sophos.com/products/xg-firewall/f/firewall-and-policies/94268/xg-in-mta-mode-with-multiple-wan-ips

    For the inbound, if you have create MX records only on one Public IP, this should be enough. XG automatically listens to all WAN IP.

    Vote the feature request:

    ideas.sophos.com/.../16593775-assign-the-built-in-services-vpns-admin-etc-to

    Regards

  • 0 in reply to lferrara

    Thanks for your reply. I think i haven´t expressed myself or my problem clear enough...

     

    I need a solution of a L2TP/PPTP-client which connects to the ISP (it is portunity.de) and gives me a fixed public ip-adress through the vpn-tunnel.

    With e.g. sonicwall or pfsense i can setup additional interfaces on the firewall, which makes the public ip available for ip-routing.

     

    With XG i don´t find something like a interface with L2TP/PPTP-option. In the area of the VPN-settings i only find L2TP-Server, but no client.

     

    in earlier discussions on Sophos-community a few years ago they announced this as a feature in future versions.

     

    Possible solutions for this L2TP-Access should be a.) a client on the exchange-server, b.) on the firewall and c.) on the router in front of the firewall.

    Version a.) is too insecure for me, version c.) is actual not possible with the fritzbox and b.) i solved with old firewall as an interface.

     

    I hope i could explain the requirement a bit better.

     

    Regards

     

     

  • 0 in reply to Jochen Held

    Jochen,

    under Authentication > User > User A (for example), you have L2TP and PPTP fields where you can configure the leased ip for that user when it connects using one of these protocols.

    Regards

Reply Children