Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 24 replies
  • Subscribers 1 subscriber
  • Views 13821 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN Connection only for some Target Addresses

linuxadmin_01
Hi,

I've kind of a special requirement:
I've an Internet connection with a govermental firewall and so I have a VPN Connection, to allow access to some needed blocked websites.
But the traffic through the VPN is slower so I want to route the traffic depending on a configurable list of IPs/Hostnames. 
But now after establishing the SSL-VPN with Sophos all the traffic is routet through this VPN. I couldn't find a configuration menu to change this. Is there a way directly with Sophos to handle this or how can you run this setup with sophos?

thanks,
linuxadmin


This thread was automatically locked due to age.
Parents
  • 0
    I see that you've constructed your own apc from an ovpn file.  Assuming that "Internal (Network)" on the client side is a /24 subnet, the definition for the server should correspond to the following definition that would be made if the device on the Server side were a UTM:



    The NAT on the Client side should be:



    I haven't tried this with the SSL VPN, but it should work if the default is not strict routing.  If it is, then your only possibility is an IPsec tunnel.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    I see that you've constructed your own apc from an ovpn file.  Assuming that "Internal (Network)" on the client side is a /24 subnet, the definition for the server should correspond to the following definition that would be made if the device on the Server side were a UTM:



    The NAT on the Client side should be:



    I haven't tried this with the SSL VPN, but it should work if the default is not strict routing.  If it is, then your only possibility is an IPsec tunnel.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML