Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 11 replies
  • Subscribers 1 subscriber
  • Views 2561 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Remote-VPN Routing

Der_Stift
Hi all,

actually I'm not sure how the routing from externel Networks works. The network is attached to our internal network via IPSec-VPN. (Site to Site)

The scenario:
Our Cellphones get the IP Address from the external Network (Network B). The they can get to our internal Netzwork (Network A). 

Now the problems:
HTTP requests (Port 80) get to our internal Eth (Sophos UTM) and via our external WAN with an external IP to the reqeuested website. (Works like charm) But the HTTP goes via Port 8080 out what mean there is a proxy somewhere. (No idea why)

But for example IMAP (Port 993) goes directly to our externel WAN and than with the internal IP to the external Mail-Server. (I cant figure it out, via the IMAP traffic goes directly to external Interface)

I have checked all NAT, Routing rules etc. Any ideas what I could do? I hope you understand what I mean [:)]

Cheers


This thread was automatically locked due to age.
Parents
  • 0
    Do you want all traffic to public IPs to transit the tunnel, just that for a few IPs or just the one for your external mail server?

    In any case, the desired range must be added to 'Local networks' in your UTM, and the Mobile Service Provider must add the same range to the equivalent of 'Remote networks' on their side of the VPN.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Do you want all traffic to public IPs to transit the tunnel, just that for a few IPs or just the one for your external mail server?

    In any case, the desired range must be added to 'Local networks' in your UTM, and the Mobile Service Provider must add the same range to the equivalent of 'Remote networks' on their side of the VPN.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML