Sophos XG IPsec Site to Site VPN error

Question

So I have 2 XG firewall running on VM in the same network. 
 Firewall 1 WAN IP: 192.168.150.115, LAN Network: 192.168.175.0/24 ---- Branch office, initial connection 
 Firewall 2 WAN IP: 192.168.150.114, LAN Network: 192.168.174.0/24 ---- Head office, respond only 
 I have create site-to-site IPsec VPN connection with all the same settings. I also have create firewall rules to allow traffic from LAN to VPN and VPN to LAN. However, i get the following error: 
 traffic selectors 192.168.174.0/24 === 192.168.175.0/24 inacceptable 
 [GARNER-LOGGING] (child_alert) ALERT: the received traffic selectors did not match: 192.168.175.0/24 === 192.168.174.0/24 
 Anyone can help?

FormerMember · Accepted Answer

Hi Yin Kai Ooi , 
 Thank you for reaching out to Sophos Community. 
 Yin Kai Ooi said: [GARNER-LOGGING] (child_alert) ALERT: the received traffic selectors did not match: 192.168.175.0/24 === 192.168.174.0/24 
 This event indicates an issue with the traffic selectors(local & remote subnet) configured in the tunnel. 
 Please ensure that the local subnet and remote LAN network are configured correctly in IPsec tunnel configuration. 
 ==> Branch office: 
 Local subnet: 192.168.175.0/24 Remote subnet: 192.168.174.0/24 
 ==> Head office: 
 Local subnet: 192.168.174.0/24 Remote subnet: 192.168.175.0/24

Yin Kai Ooi · Answer

I found my mistake. I type wrongly the network address. After correctly it, the VPN connection successfully establish. Thanks

Sophos XG IPsec Site to Site VPN error

Top Replies