Elk M1XEP and Sophos UTM

C

cyberk

Member
Hello,
 
Is anyone here using a Sophos UTM (Router/Firewall) and an Elk M1XEP. I'm having major issues with port forwarding and the M1XEP, was hoping someone else could reproduce.
 
KLC said:
Hello,
 
Is anyone here using a Sophos UTM (Router/Firewall) and an Elk M1XEP. I'm having major issues with port forwarding and the M1XEP, was hoping someone else could reproduce.
Click to expand...
I am using Sophos UTM and a M1XEP.

I currently do not use port forwarding and use OpenVPN on my phone to connect and then connect using eKeypad on my phone.

However if I can help test something let me know.
 
So very glad you're around! Looks like we have very similar set ups, I too am using eKeypad.

Would you be willing to set up a DNAT port forward to the secure port on your M1XEP and see if you can get consistent connections? Mine work about 10% of the time.

Also, for the VPN, I had mine configured that way for a while but I got tired of having to dial the VPN manually.

On a somewhat related note, have you tried getting VPN on Demand to work? I can get it to dial the connection on demand but it prompts for password every time, instead of using cert based auth.


Sent from my iPhone using Tapatalk
 
Some additional news, I can't even access the m1xep through VPN. Other servers/services on the same subnet as the M1XEP work great. The issue seems to be between the XEP and the Sophos...I'm stumped.


Sent from my iPhone using Tapatalk
 
Although the XEP works great when I'm physically connected to the network (Ethernet/wifi). I decided to go ahead and power cycle it completely, I'll test for a bit and will let you know if that resolves.


Sent from my iPhone using Tapatalk
 
The secure port Elk connection is telnet over an SSL tunnel.  
 
It looks like the Sophos is a combination network and web access firewall.   You should make sure you have all web access firewall features for your rule turned off since this is not an HTTP connection (web filter, malware detection, IPS, security heartbeat, traffic shaping, etc).
 
If that doesn't help then I would probably investigate TCP timeouts on the device.  Most firewalls I have used have a 30min timeout by default but I don't know Sophos.
 
You must log in or register to reply here.

Similar threads

T
Need help connecting an ELK M1 Gold to a Johnson Controls PowerManage monitoring station
Replies
2
Views
276
TriLife
T
B
Port forwarding
Replies
10
Views
407
pete_c
pete_c
J
Elk M1XRF319 wireless zones acting opposite - READY=NOT READY and NOT READY=READY
Replies
11
Views
266
Sandpiper
Sandpiper
R
Advice in Designing new Elk System
2 3
Replies
37
Views
2K
rmf
R
BraveSirRobbin
Needing Remote Access Advice
Replies
6
Views
321
BraveSirRobbin
BraveSirRobbin
Back
Top