Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Red device access problem

Hi;

My red device is installed as standard/split and is connecting to sophos. Uplink is green.  Split networks defined. At the same time, the departure and return rules are also smooth.

But i have a different problem. 

 When I ping the RED's local IP address from the location where it is located, I get a time out, I get a response from 50-60 pings. The response I got is very slow.

I reinstalled the RED device, deleted all the rules and rewrote but without success.

There seems to be a connection, but packets do not come and go between locations. Very rare packet sent but very slow.

Sophos firmware is SFOS 19.0.1 MR-1-Build365 (XG115), RED firmware is 3.0.008 (RED 15W).

When a REd connection is established, I should be able to ping at least the IP address of the RED port or other port IP addresses in sophos without any problems. (ping is on and there are no rules to block access).

It was a build I've used before with no problems.

Have you experienced such a problem before?

Could it be from the ISP?

If you think it is from an ISP, how should I open a request to the ISP?

Thank You.



This thread was automatically locked due to age.
Parents
  • First, i would try to create the connection as "standard/consolidated" (without split)

    Then try to ping the RED IP (here you ping the RED-Interface-IP at the Sophos ... not really the RED itself.

    Please double-check, if the IP-Ranges at the WAN/LAN Ports of the RED are not used within the UTM-Location.

    After this is working, you can start with split-tunneling.


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

  • Hello,

    can we have a network diagram, please. Or any further info about your IP networks and the RED-config edit window (screenshot)

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

  • Hi,

    It's a very simple network, it doesn't have a structure that requires a diagram.

    RED's wan port is connected to ISP modem's LAN port and RED's LAN pot also has an uplink to the switch inside.

    My RED connection is up.

    Firewall rule is ok

    And my red settings;

    Access to network where RED needs to go behind sophos firewall

    By the way, on the sophos this RED is connected to, 15 more REDs are connected and they are running smoothly.

    I'm pretty sure it's not a problem with the rules, because it was working fine 1 month ago and I didn't make any changes

  • ok, may be an ISP-Problem.

    Possible fixed speed settings at the ISP-Modem/Router..?

    Ping to 52.53.54.52 looks bad too? (Here you ping the Interface at the Firewall-devide ... not the local RED)


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

  • Hello,

    There are three IPs involved here.

    1. WAN1 Uplink IP 

    2.Online From IP

    3. RED IP ( RED Network)

    Can you please help me understand that to which IP are you trying to Ping and direction of ping?

    1. From RED Client to Client behing XG

    2. From Client Behind XG to RED Client

    3. Client in WAN1 Uplink Network to WAN1 Uplink

    4. From internet to Online from IP

    Or something other then what is mentioned above?

Reply
  • Hello,

    There are three IPs involved here.

    1. WAN1 Uplink IP 

    2.Online From IP

    3. RED IP ( RED Network)

    Can you please help me understand that to which IP are you trying to Ping and direction of ping?

    1. From RED Client to Client behing XG

    2. From Client Behind XG to RED Client

    3. Client in WAN1 Uplink Network to WAN1 Uplink

    4. From internet to Online from IP

    Or something other then what is mentioned above?

Children
No Data