Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 1 subscriber
  • Views 2319 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

PPTP not working after upgrade ASG 7 to UTM9

-andreas-
Hi,
The PPTP Connections at a customer does not work properly after the upgrade to UTM9 from ASG7.
The configuration of the tunnels was first made on ASG6, then a couple of years ago they upgraded to 7 (no problem). But now when I upgraded to UTM9 I get the problem.
When the configuration was first made on ASG6, we used static IP for all users that was in the same IP segment as the server. I guess that this is not recommended. So I have changed that to VPN-Pool (PPTP). With that change made, I am able to connect to the network and even ping the server(!) but, when I try to connect to the server with \192.168.1.10 it fails and RDP does not work either. I am also able to connect to Webadmin through the tunnel.
I have created a Firewall rule that says VPN-Pool (PPTP) - Any - Any, Allow
and placed it high in the rules list.
Some are using SSL tunnels, and they are working fine after the upgrade.

Best Regards
Andreas


This thread was automatically locked due to age.
Parents
  • 0
    Sounds like it's time for what I call Rule #1 (enhanced):

    Whenever something seems strange, always check the Intrusion Prevention,
    Application Control and Firewall logs.


    Anything helpful in those logs?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Thanks Bob.

    As an update, in checking the firewall logs earlier, all of the packets were being blocked as spoofed packets.  I turned Firewall --> Advanced --> Spoof Protection to Off and everything is flowing properly now.

    I see from this thread that others have had the same problem.  https://community.sophos.com/products/unified-threat-management/astaroorg/f/58/t/54327

    Anyone aware of a fix for this so that I can enable spoof protection again?

    Thanks,
    Chris
Reply Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML