VPN tunnel question

Hey all,

I've got a question concerning a VPN tunnel we've set up. I dont have a lot of knowledge about this subject, so any help would be appreciated.

We've got 2 sites, lets call them Site A and Site B.
Site A is behind a Sophos UTM 9 with a local network
Site B is behind a Draytek 2960 with a local network of

At this moment we've got a working VPN tunnel between these 2 networks.
But on Site B there is another subnet ( with a printer on which we are trying to connect to from Site A.

But I'm not entirely sure on how to get this done. Should I just add this second subnet to the Remote Gateway on the Sophos UTM and configure it on Site B as well?
Or do I need to do something entirely different?

Any advice would be greatly appreciated,


  • That sounds right to me.  Just make sure that your firewall section also allows the required traffic to pass from site A to site B too.

  • Hi, Frank, and welcome to the UTM Community!

    If you only want to allow Site A to reach the printer, you can just add it alone to the tunnel.  That would let you continue to use automatic firewall rules instead of having to worry about manually-created ones.

    Cheers - Bob

  • Hi Frank,

    although there is wisdom in the previous answers, I actually have had the same issue, with Draytek 28xx Routers.

    You have to create a another VPN profile for this scenario to work, this will encompass the second LAN Subnet on Site B.

    Draytek Routers have a problem have 2 different Subnets in the same VPN profile (where do you put it?!). On a UTM no problem ...

    hope this helps