Is it possible to use Port 443/TCP for both OWA (via WAF) and for OpenVPN-Server? It wold be nice to use 443/TCP for OpenVPN because 1194 is often blocked.
You will want to change the protocol for the SSL VPN to UDP - that speeds up the connections and avoids the port conflict. I also recommend that you change the port for the User Portal to 2443.
Hm? Is that realy what I want to do?
Isn't it better to use the WAF for the Userportal and the OWA? That would avoid the Problem that the Users have to deal with Portnumbers.
It would be great, if OpenVPN would use Port 443/TCP because other ports are often blocked.
Or is it simple impossible to use 443/TCP for WAF and OpenVPN?
In theory it's possible but it would be slow because every connection would have to go through openvpn and then possibly redirected to waf. Therefore we decided to support only userportal + openvpn on same port because userportal is not frequently used (connection-wise compared to waf).
Ok, also nur die wirklichen Web-Zugriffe über 443/TCP, und OpenVPN dann über 1194/UDP. Wie sind da Ihre Erfahrungen bei Außendienstlern, die dann eventuell hinter einer andere Firewall festhängen?
Mario commented that it's pointless to change the port from TCP/443 to avoid a conflict. The preferred solution is a different IP for Portal & SSL VPN than those used for WAF. My suggestion assumed that Hoeppi had only a single public IP.
Apparently, more traffic is blocked by ISPs in Europe than in the USA where changing to UDP works fine everywhere.
