Setup: Sophos XGS 87 (SFOS 19.5.1 MR-1-Build 278) and Sophos XG210 (SFOS 19.5.1 MR-1-Build278)
Connection type: IPSEC VPN Site to Site
Issue: The communication between the 2 site networks works well for sometime and suddenly the communication breaks. The VPN tunnel remains intact and shows connected but the communication fails. On packet capture we can see that the traffic from Branch FW reaches the HO and a response from HO is offloaded on to the VPN tunnel, however, the same never shows on the packet capture on the Branch Firewall.
I tried configuring a RED tunnel too and the same issue is observed on that too. However, on RED this happens only for SAP traffic and rest functions well. The FW rule for RED+VPN+LAN => Any to RED+VPN+LAN=> Any exists so there is no reason for any kind of blocking here.
Any help would be highly appreciated.
[edited by: emmosophos at 5:18 PM (GMT -7) on 26 May 2023]