Hello
We have new Sophos VA VM in our Azure (19.0.1 MR-1-Build365 + latest fixes, raised from Azure market).
Office LAN: 10.50.0.0/24, static IP on SonicWall WAN
Azure VPC: 10.0.172.0/24 (Sophos VA WAN) + static public IP and 10.0.0.0/24 (Sophos VA LAN)
We created Site-To-Site tunnel with between Sophos VA and old SonicWall (SonicOS Enhanced 6.5.4.7-83n) in the office using this manual: https://community.sophos.com/sophos-xg-firewall/f/recommended-reads/126166/sophos-xg-firewall-establish-ipsec-connection-between-sophos-xg-firewall-and-sonicwall
Local/Remote IKE ID are set as public/static IPs on both sides.
Everything was set up and went up with almost no problems. Virtual machines behind Sophos VA in Azure have become available from the office LAN.
After a while we noticed that the tunnel began to fall off and falls several times a day.
This is not related to the loss of the Internet at the ISP (its 100% stable).
And only turning off and then turning on again the tunnel on Sophos helps (red / green circles in the Status/Active column in Site-to-site VPN panel).
We tried playing around with dead peer/keep alive settings on both sides, but they didn't work.
We also ran a simple endless ping from the office network to the VM behind Sophos in Azure, but that didn't help.
Here is what is seen in the logs in both firewalls.
We also tried to reboot both firewalls with same result. The tunnel falls down after a while and can only be raised on the side of Sophos VA.
This thread was automatically locked due to age.
