IPSec connection is Down after migrating systems to another data center (WAN IP changed)

Question

The information provided by clients is as below

From our admin side, we already amended the information such as local subnet and remote subnet as below except the interface wan1

Do we need to match the interface also? We do not know how to create such interface because we only have the IP address of the data center.

The connection is still down. Please advise what we should do. Thanks. 
 
 Best regards, 
 Joshua

vamshi d · Answer

Hi cap admin , It seems there is some routing loop as per the log you shared - the sent and received packet is on the same node. 2023-11-28 10:41:29 24[NET] sending packet: from 152.101.24.21 [500] to 58.64.201.68 [500] (272 bytes) 2023-11-28 10:41:29 04[NET] <54444> received packet: from 152.101.24.21 [500] to 58.64.201.68 [500] (272 bytes) The above log you provided seems to indicate that a packet was sent from an IP address (152.101.24.21) to another IP address (58.64.201.68) and was simultaneously received on the same node Can you check if there is some network misconfiguration ? PS: " no IKE config found for 58.64.201.68...152.101.24.21, sending NO_PROPOSAL_CHOSEN" indicate there is no IPsec Tunnel configuration with the said localgateway (58.64.201.68) and remotegateway (152.101.24.21) on the Node which received it. Regards, Vamshi

emmosophos · Answer

Hello there, 
 Thank you for contacting the Sophos Community. 
 Take a look at the following KB . If the issue persists, please take a TCPdump on the WAN interface of the Sophos Firewall to confirm packets are arriving from the new Public IP. 
 Regards,

IPSec connection is Down after migrating systems to another data center (WAN IP changed)

Top Replies