Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 1950 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN users to use HTTP Proxy

preet
Using L2TP over IPSec with Masquerading option so users can connect to Internet via Office.
How to make them use HTTP Proxy and record all traffic.
The firewall settings are:
VPN Users--masquerade--external address
VPN Users--Any--Internal Interface--Allow


This thread was automatically locked due to age.
  • 0
    Is HTTP Proxy in transparent mode?

    How do you authenticate to establish the VPN?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Yes HTTP Proxy is in Transparent Mode.
    Using preshared key for L2TP over IPSec
  • 0 in reply to preet
    If you are assinging addresses by 'IP address pool' then you need to add V'PN Pool (IPSec)' to 'Allowed networks' in 'Global HTTP settings'.  If you are using 'DHCP Server' and the assigned IPs are in the 'Internal (Network)' subnet, then you don't need to do that.

    Once they are allowed to use the proxy, then their traffic will go through the proxy since you ave it in Transparent mode.

    One thing you might not be able to control is how they configure the client side of the VPN.  On the Windows XP VPN Client, there's a single check box to de-select 'Use remote gateway' - this creates a "split tunnel" where traffic to your internal network goes via the VPN, but all other traffic behaves as if the VPN were not in place.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Cookie Information Banner