Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPSec VPN TELTONIKA RUT240 and SOPHOS XGS

Hello everyone,

I have successfully established an IPSec site-to-site connection between a SOPHOS XGS firewall and a RUT240 from Teltonika.

A ping from the Teltonika router to the SOPHOS firewall works. A ping to an end device behind the SOPHOS firewall also works.

A ping from the SOPHOS directly to the Teltonika router works. However, I cannot reach any end device behind the Teltonika router.

If I do a route tracing on the SOPHOS, it looks as if the route only goes as far as the Teltonika router and then either no further.

Where is the error?



This thread was automatically locked due to age.
  • Hello there,

    Thank you for contacting the Sophos Community.

    If you’re able to do some TCPdump at the 3rd party firewall, most likely, you will see the packets arriving there usually. What happens is that the router forwards the packet to the computer in question, but it is the computer that drops the packet because the Computer Firewall don’t see the packet coming from the same network, so I would recommend you to disable the Computer Firewall and ping again, most likely that would be the issue, if that is the issue and you don't want to disable the Computer Firewall, you might need to Masquerade the traffic as it leaves the interface where the computer is connected to, so the computer sees it as coming from the same network.

    Regards, 


     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
  • Thank you, that was the cause!