Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 1785 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Configuring site to site VPN with 2 sophos UTM

Distro66
Hi!

Firstly, I apologize if this has already been covered, but I have been unsuccessful to find a proper guide.

I have configured to virtual UTM`s. I now wish to create a site to site VPN. 
I have read that SSL VPN is better than Ipsec, but I would like for you guys to give me advice for my setup.

I wish to replicate some servers over the VPN. What is the best VPN option?
Does someone have a newbe guide for setting this up?

Any information will be greatly appreciated [:)]


This thread was automatically locked due to age.
  • 0
    Hi, I use IPSEC site-to-site VPNs, but I guess SSL is an option as well...

    For IPSEC,
    Just choose the same profile on each end (the AES 128 one is good), and set the Local Networks for each end, etc.

    Barry
  • 0
    Hi, and welcome to the User BB!

    Barry's suggestions are always great ones.   How to create an X509 key based Site-to-Site VPN has a lot more information than you need, but I would go with certificates instead of Pre-Shared Keys.  If you feel that that's beyond you, RSA keys are a good second choice with just two sites.  

    IPsec with AES 128 PFS will be faster and more-secure than the SSL VPN, although you can speed up the SSL VPN by changing the Protocol to UDP.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    and thank you for sharing your expertise!

    I will try to configure ipsec with pre shared firstly. If I am able to successfully connect, I will continue to configure with certificates.

    Thank you again for your comments.
  • 0 in reply to BarryG
    Hi Guys,
    BAlfson, is the guide still valid for ver 9.2?

    Thanks
  • 0 in reply to mexim
    Hi Guys,
    BAlfson, is the guide still valid for ver 9.2?

    Thanks


    I'm not BAlfson, but I can confirm that it is still valid (however some configuration options are to be found a little bit differently in the 9.2 webadmin interface).

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Unfiltered HTML