Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 8 replies
  • Answers 1 answer
  • Subscribers 2 subscribers
  • Views 12128 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to use DHCP for VPN Clients?

Revan

Hello,

i want to assign specific ip addresses from the ip pool to the vpn clients.

Is it possible to use the build in dhcp server of the utm?



This thread was automatically locked due to age.
  • 0

    Many years ago, you could use your LAN's DHCP server to also assign IPs to IPsec/L2TP clients.  Then, the behavior changed and you could not.  Whether the devs have added this capability back in, I don't know.  If it's successful for you, please post back here.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0

    Hi Revan,

    When you authorize an User for Remote Access VPN you can edit the USer's object and navigate to the Advance option. Here, you will find a field "User static Remote access IP ". I guess that is what you are looking for.

    NOTE: The static remote access IP can only be used for remote access through PPTP, L2TP, and IPsec. It cannot be used, however, for remote access through SSL.

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to sachingurung

    Ah, thank you very much but i need it just for ssl vpn :(

  • +1 in reply to Revan

    Hi Revan,

    That brings you to a feature request. I think there should be an open FR for this requirement. However, you can raise it as a feature here.

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to Revan

    Revan, a possible workaround for the purpose you've described is as follows.

    Assuming that you want user Revan to access from a specific internal IP 172.17.1.34:

    1. Put 172.17.1.34 on the Internal interface as an Additional Address named Revan.
    2. Make a NAT rule:

    SNAT : Revan (User Network) -> Any -> Internal (Network) : from Internal [Revan] (Address)

    Does that get you where you want to go?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hi Bob,

    i want to assign specific addresses from the vpn pool (10.242.2.xxx) to the connected users.

    My goal is to have my DNS clean when clients connect to our network. Now its like "who connects first gets the first IP and so on"

  • 0 in reply to Revan

    That isn't possible.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML