Can't access servers after expanding network over IPsec

Question

Hi Everyone, 
 I can't figure out why can't I access any of my servers over VPN (IP Sec) after expanding my network from /24 to /22 I'm running SFOS 20.0.1 MR-1-Build342 
 
 Here's my setup: 
 Before network expansion 
 Network, LAN Zone, IPv4/netmask: 192.168.123.1/24 
 IPsec, Assign IP from 192.168.123.50-192.168.123.100 
 Permitted network resources: LAN: 192.168.123.0/24 
 I can ping and remote into my servers. 
 
 After expansion 
 
 Network, LAN Zone, IPv4/netmask: 192.168.123.1/22 
 IPsec, Assign IP from 192.168.120.1-192.168.120.100 
 Permitted network resources: LAN: 192.168.120.0/22 
 
 I also imported the updated scx file into Sophos Connect and managed to VPN into the firewall. 
 But I can't ping or remote into any servers in all of the segments 192.168.120.X-192.168.123.X. 
 
 What's wrong? Any help would be great. 
 
 Regards, 
 Albert

Sreenivasulu Naidu · Accepted Answer

Hi AlbertChua , is there any reason why IPsec IP range (the virtual IP range, from which the ip addresses are assigned to the remote access clients) is falling into the LAN subnet range? we don't recommend this approach; can you try choosing a different range for IPsec (virtual IP) range, anything of your choice and try out ?

Can't access servers after expanding network over IPsec

Top Replies