Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 41 subscribers
  • Views 1101 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SNAT over IPSec XGS107-XG135

Dimitris Roubos

Hello there,

I have 2 Sophos Firewall connecting to Networks with IPSeC Site-to-Site VPN 1 Public IP for each network.

XGS107 (SFOS 19.5.3 MR-3-Build652)

XG135 (SFOS 18.5.2 MR-2-Build380)

Network A 192.168.1.0/24

IPSeC gateway 172.16.21.1

Network B 10.10.10.0/24

IPSeC gateway 172.16.21.254

The concept is that we have one Server that is accessed only from Public IP from Network A and i want to access that Server from Network B, I assumed that SNAT is the solution but I am not aware of how to setup in Sophos.

Any suggestions they would be appreciated.



This thread was automatically locked due to age.
Parents
  • +1

    Thanks everyone for your ideas you helped me a lot, but as soon as i realised the concept i understood how to utilize the IPSeC connection.

    Network B

    I added a static route to the site's IP Address / gateway 172.16.21.254 / interface Network B to Network A

    Network A

    Then I added 2 firewall rules (1 for each directions) for allowing the site's IP Address is reachable.

Reply
  • +1

    Thanks everyone for your ideas you helped me a lot, but as soon as i realised the concept i understood how to utilize the IPSeC connection.

    Network B

    I added a static route to the site's IP Address / gateway 172.16.21.254 / interface Network B to Network A

    Network A

    Then I added 2 firewall rules (1 for each directions) for allowing the site's IP Address is reachable.

Children
No Data
Unfiltered HTML