We have 5 Sophos UTM devices deployed and 1 of several tunnels seems to connect but not pass any traffic. We have disabled all IPS and temporarily added firewall rules to allow traffic, including checking ICMP settings on the affected firewalls. The settings on the remote gateways, tunnels, etc, are all identical to fully functioning tunnels.
We recently noticed this problem after the second to last firmware update (9.703-2), but we are unsure if it occurred prior to that as one of the problem firewalls was offline for several months prior to seeing this issue. Other ipsec tunnels from the same firewalls do not show the same issues. We have checked the ipsec logs and see no useful information.
Has anyone else seen this behavior or have suggestions?
Hello Aaron,
Thank you for contacting the Sophos Community.
We would need to find if the tunnel is getting to and passing in the IPsec tunnel.
Please check this KB so you can identify the tunnel object and then do a espdump.
Regards,