Reflexion will be End-of-life on March 31,2023. See Sophos Reflexion EoL FAQs to learn more.
Hello dear community friends! Next, I created vpns tunnels using SD-WAN routes between the DataCenter and the Branch as shown in the image below. Both firewalls are version 19.5.0 GA-Build197
Note: They are currently disabled, as I returned to vpn for ipsec site a site due to impacting the operation.
BRANCH:
These procedures are also applied in the DataCenter firewall.
The issue is, the branch manages to connect to the datacenter servers, but the connection drops as if the vpn had stopped. I left a ping from a branch machine on the server, but it doesn't lose packets when the connection to the server drops. Here is the print below:
I checked the conntrack command by cli to see the session of that connection, and the moment the connection with the server is lost, the session that was open is also lost. Here's the print:
Is the problem with the server connection dropping due to this? I would like your help to try to get around this situation.
Another observation, when the VPN is Site a Site this problem does not occur.
I thank everyone!
Hello Bharat, thanks for the assistance
I did the procedure but as you can see in the print, the ipsec interference is not available for the branch firewall model which is an XG210 (SFOS 19.5.0 GA-Build197), the Datacenter firewall is virtual SFVH (SFOS 19.5. 0. 0 GA-Build197) and also not compatible:
Segue as politicas aplicadas:
Filial
DataCenter:
Hi Igor Alves do Nascimento
Please refer Sophos Firewall: IPsec troubleshooting and most common errors
https://support.sophos.com/support/s/article/KB-000038566?language=en_US
Thanks and Regards
"Sophos Partner: Infrassist Technologies Pvt Ltd".
If a post solves your question please use the 'Verify Answer' button.