Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 23 replies
  • Answers 1 answer
  • Subscribers 2 subscribers
  • Views 37033 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos User Portal - Not Allowing External Networks/No Connection

TitanRob16

Hi all,

I'm currently struggling to set-up the Sophos UTM 9 User Portal. It works fine on our internal wireless network (which acts as an external network), but when I try connecting to the user portal through my iPhone or computer at home, I receive a "this page cannot be displayed" error. It seems something is blocking it, even though the user portal has been set to accept any networks. Has anyone come across this before? How should I go about resolving this? 



This thread was automatically locked due to age.
Parents
  • 0

    HI Rob,

    Please check if there is a DNAT configured to map traffic hitting on the External IP <address> over port 443!

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to sachingurung

    sachingurung said:

    HI Rob,

    Please check if there is a DNAT configured to map traffic hitting on the External IP <address> over port 443!

    Thanks

    Hi, thanks for the reply! This looks like it could be it as there is no DNAT rule configured for the SSL VPN. 

    As you can see from the screenshot below, I've got any traffic using any service going to the external IP. I'm not sure how I can set this to say "external IP using port 443", as I just have the external IP set in this network definition. Or is the port setting picked up in the User Portal settings? I'm quite confused by it... 

    Also, where am I forwarding this to? Would it be the VPN Pool? Networking is evidently not my strong suit. 

  • 0 in reply to TitanRob16

    Hi,

    Sorry to put up a wrong expression, I meant to convey that there should be no DNAT configured to map port 443. In case there is a DNAT configured to map the traffic hitting on port 443 towards an internal server then this can cause UTM to forcibly map the traffic away from User Portal. 

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to sachingurung

    Hi Sachin,

    Ah, in that case, no... no there is no DNAT configured to map traffic over port 443. 

    For some reason it seems that the Sophos portal is being blocked when used by external connections. Internally, I can connect perfectly fine over port 443. 

Reply Children
No Data
Unfiltered HTML