Hi,
i made a lab for IPSec VPN by connecting two Sophos XG 87 directly via cable (Port2 - Port2).
The IPSec tunnel is up but the ping doesn't successes.
This is my lab architecture.
Sophos XG 1 Port 2 (WAN):
IP: 213.0.0.1/29
GW : 213.0.0.2
Sophos XG 2 Port 2 (WAN):
IP: 213.0.0.2/29
GW : 213.0.0.1
Ping from 172.16.100.100 to 172.16.100.254 OK
Ping from 172.16.100.254 to 172.16.100.100 OK
Ping from 172.16.10.100 to 172.16.10.254 OK
Ping from 172.16.10.254 to 172.16.10.100 OK
Ping from 213.0.0.1 to 213.0.0.2 OK
Ping from 213.0.0.2 to 213.0.0.1 OK
Ping from 172.16.100.254 to 172.16.10.254 fail.
Ping from 172.16.100.100 to 172.16.10.254 fail.
Ping from 172.16.10.254 to 172.16.100.254 fail.
Ping from 172.16.10.100 to 172.16.10.254 fail.
Ping from 172.16.100.100 to 172.16.10.100 fail.
FW : 18.5
have you enabled PING at -> Management -> Appliance Access for the VPN Zone? Can you ping the client 172.16.10.100?
Firewall Rules set?
Regards,
fusi
Yes the ping is allowed in lan, wan and vpn.
Can you show us your firewall rules corresponding to this IPsec Tunnel?