XG not connecting to Ipsec Site-To-Site(Multiple NATs)

Hello!

 

 

We have a weird problem, where, when i do a Nat with only one local subnet the tunnel connects, but when I do it with more than one it doesn't, the second device is not a Sophos device, is a proprietary one.

 

So the configuration like this Works:

 

Local Subnet:

XXX.XXX.XXX.XXX/24

Remote Subnet:

YYY.YYY.YYY.YYY/YY

 

This also works:

Local Subnet:

NAT1(Inside X)

Remote Subnet:

YYY.YYY.YYY.YYY/YY

 

But this one just connects one of the NAT, the other two are not working:

Local Subnet:

NAT1(Inside X)

NAT2(Inside X)

NAT3(Inside X)

Remote Subnet:

YYY.YYY.YYY.YYY/YY

  • Can you fill those values with examples? 

    But i guess, this will not work... 

    XG will map the first NAT with "matching" subnets to the tunnel and leave the other.