Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 5 subscribers
  • Views 6295 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN with 2 Internet Connections and 2 Hostnames

xenon2008

Good Morning Everybody,

 

I need your help...

 

I have 2 difference Internet Connections. One from A1 (slowly....) and a twice (faster,backup) LTE Connection.

The UTM is configured with Upload Balancing beetween this two Uplinks.

I also have a NO-IP Account with a Hostname (xenon*****.no-ip.org) that i have entered in my UTM as Hostname/FQDN. I also have configured a SSL VPN Tunnel over this Hostname!

The LTE backup Uplink has a Static IP, and i also have a Domain.. I have created a SubDomain with a A-Record to this Static LTE IP-Address.

Is there a Way so that i use the A1 and the LTE Connection for SSL VPN?

So i am that (So i want it or wish it):[A]

If I connected to the NO-IP Hostname i would should use the slowly A1 connection and when i use the Hostname with the StaticIP, SSLVPN Client should use the faster LTE Connection..

 

Is this possible? and when yes, what must i configure in my UTM Settings?

Sry for my BAD English, i am a German Speaker... With no good english knowledge [:'(]

(so Google Translator helped me =) )

 

Best Regards

Xenon



This thread was automatically locked due to age.
Parents
  • 0

    I haven't tried this, but I think it should work.  On a PC where you have loaded the SSL VPN client, go to

    C:\Program Files (x86)\Sophos\Sophos SSL VPN Client\config

    In that directory, make a copy of the directory that has your NO-IP config and rename it to one using the other domain.  Inside this new directory, edit the SSL VPN config file and change the "remote" line to the FQDN of your LTE connection.

    If that doesn't work, please let us know.

    In any case, if you want a second choice on all devices (I'm thinking about my iPhone), just change the 'Override hostname' on the 'Settings' tab and then load the new configuration.

    Cheers - Bob

  • 0 in reply to BAlfson

    Good Morning Bob,

     

    Thanks for your answer.

    Can you explain me what "Override Hostname" does? how it works?

    When i should use this option must i also configure the settings in my SSL VPN Client?

    And where must i enter the NO-IP Adress and where the Satic-IP Subdomain in my UTM Configuration?

    Must i change my Hostename under System=>Hostname?

     

    Best Regards

     

    Mark

  • 0 in reply to xenon2008

    Mark, since I have a copy of the "Administrator Handbuch" auf Deutsch, I've added, in parentheses, the German designations below  that you likely see in WebAdmin.

    what "Override Hostname" does?

    I think it ('Hostnamen übergehen') only changes the line with "remote" that gets written into the VPN SSL config file that you download from WebAdmin or the User Portal.  Enter your second FQDN in WebAdmin ('Fernzugriff>>SSL') on the 'Settings' ('Einstellungen') tab, not under 'System Settings' ('Systemeinstellungen').

    MfG & Cheers - Bob

Reply
  • 0 in reply to xenon2008

    Mark, since I have a copy of the "Administrator Handbuch" auf Deutsch, I've added, in parentheses, the German designations below  that you likely see in WebAdmin.

    what "Override Hostname" does?

    I think it ('Hostnamen übergehen') only changes the line with "remote" that gets written into the VPN SSL config file that you download from WebAdmin or the User Portal.  Enter your second FQDN in WebAdmin ('Fernzugriff>>SSL') on the 'Settings' ('Einstellungen') tab, not under 'System Settings' ('Systemeinstellungen').

    MfG & Cheers - Bob

Children
  • 0 in reply to BAlfson

    Hello Bob,

     

    Thanks for your Help! That sounds really good!

    I have configured it, and what should i say?? => It looks likes work a charm (is this the right formulation? [A])

    I will test it tomorrow from a another Internet Connection...

    I only have created a Subdomain to my Static LTE IP and entered this Subdomain in the "Override Hostname" field!

    Or must i change something more? e.g. Firewall rules or other things?

    Cheers

    Mark

     

    EDIT:

    Sry.... but now the config from SSL Only include the Subdomain but not anymore the NO-IP Adress..

    I think i will remote the Subdomain from Override Hostname and manually make a second Config file with the Subdomain LTE Static IP 

    (I was probably looking forward to early)...

    Cheers

    Mark

  • +1 in reply to xenon2008

    That's close enough for everyone to understand, Mark. [;)]  The American version is "it worked like a charm."

    Try the renaming trick in the config sub-directory before loading the original config.  If that doesn't let you get two, make another user name for the second connection.

    Cheers - Bob

  • 0 in reply to BAlfson

    Good Morning Bob!

    The Entry under "Override Hostname" i have removed again.

    And now i have made a Copy from the NO-IP Config Folder, and renamed all Files with the Subdomain.

    Now i have 2 Folders in my Config Folder, and now i have also TWO Entrys in my Sophos SSL VPN Client.

    I've just tested it on my second notebook from an another Internet Connection and it worked like a charm! [H]

     

    You are my Hero!

    You solve my Problems and learn me English at the same Time! i Love you [Y]

    Would you live here with me, I would bake a cake for you as little thanks [^]

     

    Cheers

    Mark