Disclaimer: This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment.
This guide outlines troubleshooting suggestions when a SSL VPN user is unable to access LAN resources behind the XG, but the SSL VPN connects successfully.
Note: First make sure to follow this KB to ensure you have the correct firewall rules configured.
Troubleshooting Suggestions - Windows O/S
Situation: If User A can connect but User B is unable to - even though they belong to the same SSL VPN user group, the issue might be related to User B's local machine.
- Please open User B's SSL VPN client and confirm a successful connection.
- Once connected, right-click on the profile and select View Log
- Search for a similar log entry:
ROUTE: route addition failed using CreateIpForwardEntry: Access is denied. [status=5 if_index=3]
- If you see a similar entry - the issue may be that the computer is not allowing the current user to print the route to the local machine.
To fix this issue:
- Open Windows Explorer
- Search for SSL VPN
- Right-click and open file location
- Click compatibility
- Check Run the program as an adminstrator
- Select Apply and OK
Note: This is a security measure imposed by Microsoft and not by OpenVPN.
Edited TAGs for Test
[edited by: emmosophos at 9:51 PM (GMT -7) on 13 Sep 2024]