Guest User!
You are not Sophos Staff.
I updated via export/import all settings and now i saw, that the "Assign IPv4 addresses" is the value of "IPv4 lease range" start IP. So now i had 192.168.111.10/24 as network, what is wrong and hard to find, because configuration was running before ;-)
I dont know if it is relevant in an upgrade path other than export/import complete configuration.
Despite that I found the error, I can no longer connect to the Sophos from the iphone with openVPN and the GUI logfiles show nothing.
To compare v18 and v19:
In v18 is clear to enter the start IP of the range.
In v19 is not realy clear to enter the IP of the network/subnet (like in every other form) or to enter the start IP.
Here the config parameter from exports...
v18
-<SSLTunnelAccessSettings transactionid=""> <Protocol>UDP</Protocol> <SSLServerCertificate>xxxx SSL VPN Cert</SSLServerCertificate> <OverrideHostName>vpn.xxxxxx.de</OverrideHostName> <Port>1194</Port> -<IPLeaseRange> <StartIP>10.73.10.1</StartIP> <EndIP>10.73.10.254</EndIP> </IPLeaseRange> <SubnetMask>255.255.255.0</SubnetMask>
v19
-<SSLTunnelAccessSettings transactionid=""> <Protocol>UDP</Protocol> <SSLServerCertificate>Firewall Certificate</SSLServerCertificate> <OverrideHostName>vpn.xxxxxxx.eu</OverrideHostName> <Port>1194</Port> -<IPLeaseRange> <StartIP>192.168.117.0</StartIP> </IPLeaseRange> <SubnetMask>255.255.255.0</SubnetMask>
Since the value name is the same, now think i have to enter the first IP of the network.
But tunnel doesnt come up and without shell access i can't see anything. Log on GUI is empty.
