This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG IPsec Site to Site VPN error

So I have 2 XG firewall running on VM in the same network.

Firewall 1 WAN IP: 192.168.150.115, LAN Network: 192.168.175.0/24 ---- Branch office, initial connection

Firewall 2 WAN IP: 192.168.150.114, LAN Network: 192.168.174.0/24 ---- Head office, respond only

I have create site-to-site IPsec VPN connection with all the same settings. I also have create firewall rules to allow traffic from LAN to VPN and VPN to LAN. However, i get the following error: 

traffic selectors 192.168.174.0/24 === 192.168.175.0/24 inacceptable
[GARNER-LOGGING] (child_alert) ALERT: the received traffic selectors did not match: 192.168.175.0/24 === 192.168.174.0/24

Anyone can help?
 



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi ,

    Thank you for reaching out to Sophos Community.

    [GARNER-LOGGING] (child_alert) ALERT: the received traffic selectors did not match: 192.168.175.0/24 === 192.168.174.0/24

    This event indicates an issue with the traffic selectors(local & remote subnet) configured in the tunnel.

    Please ensure that the local subnet and remote LAN network are configured correctly in IPsec tunnel configuration.

    ==> Branch office:

    Local subnet: 192.168.175.0/24
    Remote subnet: 192.168.174.0/24


    ==> Head office:

    Local subnet: 192.168.174.0/24
    Remote subnet: 192.168.175.0/24

  • I have configured the subnet on both firewall correctly. The error still exist. Also I have try to follow the guideline and other posts suggestion but no one of those can solve.

  • FormerMember
    0 FormerMember in reply to Yin Kai Ooi

    Can you please share snapshot of the IP host configuration of both ends? 

Reply Children