Hello all,
I got the following setup:
Sophos ASG 220 UTM 9 Firewall with 3 Servers behind it.
The UTM 9 listens on the Domain sophos-firewall.com (External IP 88.66.44.1, Internal IP 10.0.2.1).
And for example the FileServer behind the FW listens to apple-fileserver.com (External IP 88.64.44.4, Internal IP 10.0.2.4).
So when I'm connected to the Firewall with SSL-VPN (SSL-VPN IP Pool 10.242.2.0/24) I got 10.242.2.6 as the Client-IP.
Well - the Problem is that when I'm connected to the Firewall with SSL-VPN, I cannot open the WebAdmin with the sophos-firewall.com:1234 Adress and have to open 10.0.2.1:1234 instead.
Also the same with SSH - When opening an SSH Connection to apple-fileserver.com:22 I get a timeout - with 10.0.2.4:22 I get a cert-error because the IP doesn't match the Domain Certificate..
Is there any workaround with Static mapping / Masquerading, that I do not have to open those Domains with the internal IP?
Thanks for help in advance.
This thread was automatically locked due to age.
