Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 2026 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Question: SSL VPN RA and SSL VPN Site-to-Site Routing

ramirez77
Hello,

First of all: Thank you for this great product! For about 2 months I am using the ASG UTM 9.0 at home and at my parents and very happy with it.

My question concerns routing with VPN SSL, the setup:

Site A
Internal Network A 192.168.0.0
VPN SSL Pool A 192.168.11.0

Site-to-Site VPN SSL connecting Sites A – B, working

Internal Network B 192.168.2.0
VPN SSL Pool B 192.168.12.0

Local devices on site A can access anything on site B and vice versa, rules are set and working.

Remote Access VPN SSL working on site A and site B. All 4 subnets are defined and added to the RA definition on both UTMs.

However, if a my client (Macbook Pro 10.8.3 SSL client Viscosity) is connected to site A, it  cannot see the subnets from site B and vice versa.

I tried static routes on the Macbook, I tried static routes on the UTM, didn’t work out. What did I miss?

Best regards,


This thread was automatically locked due to age.
Parents
  • 0
    You can do this with both connections using SSL.  Since this is new, change the 'Protocol' to UDP on the 'Settings' tab to maximize throughput.  You will need to re-upload the site-to-site configuration in the other UTM, and re-download the client configs for Remote Access.

    Please [Go Advanced] below and show us pictures of the Remote Access and Site-to-Site configurations that you had that didn't work.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    [SUCCESS]

    So I went ahead and took the screenshots (attached below).
    Then I deleted it all.
    Then I re-did it with UDP.
    And it works.

    Thank you very much.

    Best regards,
Reply Children
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML