I saw another post on this issue, so I thought since 9.2 is out, it was a good time to take another run at raising the visibility of this feature for consideration in the next release.
For a wide range of reasons, users might want to route all or a portion of their traffic through a vpn. Whether the reason is security, anonymity or geolocation, the solution is to connect utm as a client to a vpn server, in this case, an openvpn server, since openvpn is widely supported by vpn service providers.
Various people have tried to get this working with varying degrees of success by hacking apc/epc files. I tried and gave up. When I want to use a vpn, I start openvpn on one of my pcs. It's far from an ideal solution, but I don't have the time or the expertise to implement another solution. (I just upgraded my windows server, so I may install another linux guest for the sole purpose of running openvpn.)
On the UTM (Formerly ASG) Feature Requests page, there is a feature request for this capability. It's called SSL VPN: Convert .ovpn to .apc/.epc for Site-to-Site SSL Tunnels. Admittedly, the approach of hacking apc/epc files is not the best approach and would not produce the best solution, however, starting a different feature request would dilute the votes, so if you're interested in this feature, please vote for it.
I still believe it would be relatively easy for sophos to implement this. The implementation would not be unlike the way an ipv6 tunnel works. I hope that with enough support from users, sophos will take another look at it.
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
