Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 2 replies
  • Subscribers 41 subscribers
  • Views 8550 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL Site to Site VPN - Setup

AND268Y

I have managed to setup the site to site VPN on the 2 devices, and you can ping the other device from within web admin.

However, I cannot for the life in me work out how to get the 2 internal networks to talk to each other??

The source and destination network have been setup in the VPN connection using  192.168.2.0/24 & 192.168.5.0/24 which in UTM world automatically configured the required firewall rules.

I have even created a policy for any to any and still no joy.

The XG Firewall looks like it could be good, but the interface is not as easy to used when compared to the UTM.



This thread was automatically locked due to age.
Parents
  • 0
    Hey AND268Y,

    To clarify, can you ping from the XG firewalls itself to the remote (internal) networks? Then if that is successful can you ping (System > Diagnostics > Tools) and source from the local interface to the remote network?
  • 0 in reply to Ry Guy
    Hi, Sorry for the delayed response.

    I only ever got the 2 XG devices to ping each over the VPN. Despite adding an any to any firewall rule, I still couldn't get the internal networks to communicate.

    I have actually reverted back to the UTM for the time being as I didn't have the time to carry on trouble shooting this. What might be a good idea would be if someone could detail the exact steps to get the site to site VPN working properly as it clear isn't a simple as the UTM which just works. I do plan to try this again at some point when I get some more time.
Reply
  • 0 in reply to Ry Guy
    Hi, Sorry for the delayed response.

    I only ever got the 2 XG devices to ping each over the VPN. Despite adding an any to any firewall rule, I still couldn't get the internal networks to communicate.

    I have actually reverted back to the UTM for the time being as I didn't have the time to carry on trouble shooting this. What might be a good idea would be if someone could detail the exact steps to get the site to site VPN working properly as it clear isn't a simple as the UTM which just works. I do plan to try this again at some point when I get some more time.
Children
No Data
Unfiltered HTML