Thread Info
  • State Verified Answer
  • +10 person also asked this people also asked this
  • Locked Locked
  • Replies 18 replies
  • Answers 1 answer
  • Subscribers 39 subscribers
  • Views 55443 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

vpn ssl and Mac OS High Sierra

Fabien Martinet

Hi to all,

I've setup a vpn ssl config on XG 105 v 17.0.1 MR 1.

Connecting with Tunnelblick 3.7.4b

From El Capitan and High Sierra.

Both machines connect ok (authentication, vpn connected, ping to lan working)

On El capitan I can browse to internal machines web interfaces (Synology, switch, printer) and RDP to Windows server.

On High sierra only RDP is working. All web connections fail. In the Sophos log viewer (firewall part) I can see the connection accepted, then right after another connection denied on rule 0 reason : Could not associate packet to any connection.

Any idea ?

Thks a lot



This thread was automatically locked due to age.
Parents
  • 0

    I've tried with another VN client (Viscosity) : same error.

    I've also tried to connect on an older Sophos (SG115 UTM9) : it's working perfectly with High Sierra

    So the problem seems to be between High Sierra and Sophos XG v17.

    Anybody with an XG model not using v17 to have a try ?

Reply
  • 0

    I've tried with another VN client (Viscosity) : same error.

    I've also tried to connect on an older Sophos (SG115 UTM9) : it's working perfectly with High Sierra

    So the problem seems to be between High Sierra and Sophos XG v17.

    Anybody with an XG model not using v17 to have a try ?

Children
  • 0 in reply to Fabien Martinet

    Short: Ran a test; XG SFOS version likely doesn't matter.

     

    Long:

     

    I feel that my duty calls to run the test for you as I have the stuff needed, and I feel the pain of a fellow user in need. I dug out my iMac which I'm not using and started her up.

     

    MacOS High Sierra 10.13.1 - iMac

    XG running 16.05.8 MR8

     

    I installed Tunnelblick (3.7.4b stable) to also help OP as much as possible during my test, but seems like it won't matter which client I used. After failure, I tried their beta 3.7.5beta05. 

    End result always the same; I can ping resources on remote network, however, cannot get to web page.

  • 0 in reply to apalm123

    I'd also like to add that I have a sonicwall SSL VPN that I've used before, and connecting from high sierra works just fine. Even http access internally. But I don't know what Sonicwall uses, they have a proprietary VPN client on the app store that I am using. So something that Apple changed isn't compatible with Sophos XG's implementation. Plus you mentioned that your UTM works fine.