I work for a small university with a main campus and a single, annex building which is off-site. I have configured a XGS 2100 with an IPsec tunnel between the locations, which is working great. The problem is that I have no internet traffic from my LAN at the annex building where the XGS is located.
Config:
WAN: 23.25.185.x/29
LAN: 10.192.234.1/24
Connecting interface on switch: 10.192.234.2
here's my route table:
All networks show above which are assigned to SFC_LAN are in the IP Group "SFC Network Group"
Here is the rule I've created to allow internet traffic:
I know the WAN interface is working correctly based on the fact that my IPsec tunnel is working fine.
I dont have any rules above this one which deny traffic.
I dont have any rules which specifically permit traffic to the LAN zone (except the rules for the IPsec tunnel).
What on earth am I missing here?
This thread was automatically locked due to age.
Quote