Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 8 subscribers
  • Views 967 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Connect (IPSec) - Site2Site Subnet als zusätzliches Ziel-Subnet

R N

Hallo,

ich habe hier eine Sophos XG, FW 18.6, 2 Lan-Subnets, ein WAN-Port;

Es soll nun ein 3 Subnet für die Clients (Sophos Connect  - IPSec) erreichbar werden, welches über eine Site2Site Verbindung angesprochen wird.

d.h ich habe das Subnet als 3tes Ziel-Subnet in der Client Policy eingetragen, die Policy erneut ausgerollt, Verbindung funktioniert - auf die beiden vorhandenen Subnets ausgenommen des neuen 3ten. Was könnte hier nicht stimmen?

danke.



This thread was automatically locked due to age.
Parents
  • 0

    Hello there,

    Good day and thanks for reaching out to Sophos Community

    May we check if you are still encountering this issue?

    could you share what are the result when you try to ping and tracert from the end machine to the destination address/network?

    Is there any core/L3 switch on the network? If there is, kindly check if routes from the 3rd subnet from FW->L3 are included.

    Also verify FW rule for VPN if the 3rd subnet is included to the destination zone and network.

    Many thanks for your time and patience and thank you for choosing Sophos

    Raphael Alganes
    Community Support Engineer | Sophos Technical Support
    Sophos Support Videos Product Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.

Reply
  • 0

    Hello there,

    Good day and thanks for reaching out to Sophos Community

    May we check if you are still encountering this issue?

    could you share what are the result when you try to ping and tracert from the end machine to the destination address/network?

    Is there any core/L3 switch on the network? If there is, kindly check if routes from the 3rd subnet from FW->L3 are included.

    Also verify FW rule for VPN if the 3rd subnet is included to the destination zone and network.

    Many thanks for your time and patience and thank you for choosing Sophos

    Raphael Alganes
    Community Support Engineer | Sophos Technical Support
    Sophos Support Videos Product Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.

Children
No Data
Unfiltered HTML