Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 2 subscribers
  • Views 958 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN -listen on interface?

Louis-M

I need to have SSL VPN on two interfaces only. External (1 IP address only from block of 16) and internal (vlan X)

I can see that you can all or nothing eg all interfaces or 1 interface but can't see if you can select 2 interfaces.

Naturally, all interfaces would work in this scenario but it would be exposing the SSL VPN listerning port unnescessary.

Is this a case for creating a blackhole ruleset so that anything that comes in on the non desired interfces is blackholed?



This thread was automatically locked due to age.
  • 0

    Hi  

    I guess you should be able to define the two interfaces in the config file available in the SSL VPN folder for the user. You can not configure two interfaces to listen for the SSL VPN connection. I think configuring blackhole for the VPN listening port might work as well.

    Regards

    Jaydeep

  • 0

    Yes, Louis. Please show future readers the NAT rules you designed to resolve this.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML