Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 1 subscriber
  • Views 1244 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Remote Access Routing Problem?

hempkins
Hi,

I need to put up a new remote access SSL VPN. I'm using an ASG320 for the SSL. However, I want to route all traffic through the tunnel so that internet-access for the remote access clients are controlled by a central firewall. That could be accomplished by routing "any" network to the tunnel. However, I want all traffic, including internet traffic to flow through the Lan interface on the ASG 320 (see attached diagram). However, the default route on the ASG 320 have to be on the outside interface in order to route traffic to the clients I guess, so is this even possible?

So - packet to an internet host from the client is supposed to go to the Astaro 320, then out again from firewall C.

Is this doable, or will I have a routing issue on the ASG 320 no matter what?


This thread was automatically locked due to age.
Parents
  • 0
    You should be able to do a gateway policy route for 'VPN Pool (SSL) -> Any -> Internet' traffic.  I can't tell from your diagram what gateway IP you would need though.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    You should be able to do a gateway policy route for 'VPN Pool (SSL) -> Any -> Internet' traffic.  I can't tell from your diagram what gateway IP you would need though.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Cookie Information Banner