Forum Post: RE: User's need to suddenly run SSL VPN as admin
The windows openvpn client has required that since Vista. I'm new to Sophos (but not openvpn), wondered how they (sophos) get/got around that issue.
View ArticleForum Post: RE: 9.402-7 Buggy update? I'm having two issues
My suspicion is that it is Endpoint that is blocking you and not the UTM. You can confirm by taking a laptop home or to an internet cafe. Assuming you have the rights, try loading the Endpoint UI then...
View ArticleForum Post: RE: Have VPN listen on both UDP and TCP
No, you aren't. You can run separate instances of openvpn, but that is going outside of the GUI to manage, not to mention all the other stuff... firewall, routing, etc. Probably easier to run a...
View ArticleForum Post: RE: ChromeOS SSL VPN
Yup - using it now on my chromebook. The http://blog.dwolla.com/openvpn-on-chromeos-a-step-by-step-guide/ mostly works fine. You'll need to use a full-blown openssl (e.g. Linux box) to create the .p12...
View ArticleForum Post: RE: I like the UTM but......
So many things are hosted in so many places, Louis. Outside of a secure government site, I don't see any reason to block outgoing traffic. Cheers - Bob
View ArticleForum Post: RE: OpenVPN where are the options ?
Like all ordered lists in WebAdmin, once the traffic qualifies for a Profile, no further Profiles are considered. In the UTM's implementation, the only differentiating criterion is the user object, so...
View ArticleUser: Richard Woodwall
RichardWoodwall Dental problems are never any fun, but the good news is that most of them can be easily prevented. Brushing twice a day, flossing daily, eating properly and regular dental check ups are...
View ArticleForum Post: RE: 9.402-7 Buggy update? I'm having two issues
I appreciate the reply, but I'm not familiar with Endpoint. Its always been disabled in my UTM Admin interface and I haven't installed an endpoint software/client on my machine. HOWEVER, you got me...
View ArticleForum Post: How to setup DHCP server to provide IPv4 and(!) IPv6 to internal...
I recently was able to setup IPv6 outside to the internet, but my internal network is still IPv4. It should stay IPv4 as it's much easier to remember IPv4 addresses, however I would like to also assign...
View ArticleForum Post: RE: NAT DNAT Inconsistency
Kent, did you mean to show us a NAT rule? That firewall rule doesn't give us much info. You also might want to consult #3 through #5 and #1 in Rulz . Cheers - Bob
View ArticleForum Post: RE: Configure Site to Site between UTM9 to Checkpoint 600
Hi, Hagay, and welcome to the UTM Community! Perhaps you could show us the IPsec log lines from a single connection attempt? Cheers - Bob
View ArticleForum Post: RE: Limit SSL VPN
You'll need to hand-edit the /var/chroot-openvpn/etc/openvpn.conf - this is the server configuration. Once you do this, if you make changes in the Sophos webadmin, they'll probably get...
View ArticleForum Post: RE: NAT DNAT Inconsistency
Hi Bob, you're absolutely correct, looks like I forgot to upload some print screens. I've modified my original post and added a screenshot of one of the rules that is failing. I've been through the...
View ArticleForum Post: VLAN access for Guest and Local
Hi Everyone! I am responsible for implementing Sophos XG firewalls for a client my company has. They have retail locations with POS machines. Here is what I am trying to accomplish. 1. Create a...
View Article