Help us enhance your Sophos Community experience. Share your thoughts in our Sophos Community survey.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 2 subscribers
  • Views 4452 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM - IPSEC - Site to Site behind NAT (PSK)

zeus1976

Hello,

I have a new Internet connection and now I have a Router with NAT in front of the Sophos UTM.

Network A (Main):
Internet -> Router (WAN IP) -> Sophos UTM (WAN IP: 192.168.0.x)


Network B / C
Internet -> Sophos UTM (WAN IP)

I was able to solve the problem with this article:
community.sophos.com/.../site-to-site-vpn-both-behind-nat-utm-virtual-machine
(on the opposite side from the VPN - I have added the type ID: IP Adresse - both VPN with the same IP)


Remark:
- With an activated VPN - it works fine (no matter which one, but just one has to be activated)
- If both are activated, the VPN will no longer be established (both)

How do I configure both VPN's to work at the same time?

Thank you for your help.

Best regards



This thread was automatically locked due to age.
  • 0

    Two VPNs?  Not sure what that means.  Show us what you see when you expand 'Site-to-site VPN Tunnel Status' for each when it's established.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hi,

    Thank you for the replay.  Sorry, I try to formulate it better.

    I have the following constellation:
    VPN1: Main Office -> Branches A
    VPN2: Main Office -> Branches B

    The Main Office has a router a front of the Sophos UTM. When I use the trick you mentioned (see link in the first post), it works as follows:

    Scenario 1:
    Active:      VPN 1 (being created - works)
    Disabled:  VPN 2 (disabled)

    Scenario 2:
    Active: VPN 1 (error)
    Active: VPN 2 (error)

    Scenario 3:
    Active:      VPN 2 (being created - works)
    Disabled:  VPN 1 (disabled)

    Do you know this problem? Should I still upload the logs? Thank you for your help.

    Best regards

  • 0 in reply to zeus1976

    Hello,

    I found the error - with a restart of the router in front of the firewall the problem was solved. Thanks for the help.

    Best regards

Unfiltered HTML