Hi Sophos community,
I've got some problems with an IPSEC site to site VPN.
My setup is :
- Site 1, head office : XG135, lan 192.168.1.1, network 192.168.1.0/24, domain controllers at this location.
Multiple branch offices, all linked with IPSEC VPN, everything works fine except for one site. - Site 2, branch office : XGS87 lan 192.168.5.1, network 192.168.5.0/24, no domain controller at this location, users are authenticated by DC at head office.
When VPN is established, everything works fine for 3 to 5 days. After this amount of time, users start to complain about not being able to surf the internet.
When I try to debug this :
- From site 1, HO, I can ping machines in site 2, including XGS87.
- From site 2, BO, I can ping machines in site 1, including DCs, and on the internet too.
- But when I log into XGS87 and I try to test connection for authentication servers, it fails for both DCs. So users are unauthenticated, thus not allowed to surf. The only thing to have successful connection again is to reset one interface, LAN or WAN no matter which one.
On others BO sites with similar setups, everything works fine in a perfectly stable way.
Thank you in advance for your insights.
This thread was automatically locked due to age.
