Skip to content

IPsec (remote access) overview

You can establish remote access IPsec VPN connections using the Sophos Connect client.

Configuring IPsec remote access connections

To allow remote access to your network through the Sophos Connect client using an IPsec connection, do as follows:

  1. Go to VPN > IPsec (remote access) and specify the settings.
  2. Add a firewall rule to allow traffic between the Sophos Connect clients and Sophos Firewall. For higher levels of security, configure individual rules for inbound and outbound traffic.
  3. Scroll down on IPsec (remote access) and click Export connection to download the configuration files.
  4. Share the .scx file with users.
    The .tgb file doesn't have the advanced settings. You can use it with third-party VPN clients.

Remote users

Users must do as follows:

  1. Download the Sophos Connect client from the user portal.
  2. Import the .scx file shared with them to the client.
  3. Enter their user portal credentials on the client.

The Sophos Connect client then establishes the connection.

More resources