Advisory: Sophos Endpoint "Your connection isn't private" after reboot. Policy settings can be returned to normal. See: KB-000045954 for the latest updates.

Vlans and different subnets behind red 20

Hi following setup, simplified to explain

an UTM on an sg320 with a red sd-20

managed switch with vlans on main side

managed switch behind red with vlans

red is setup in split mode

Main office 10.0.0.0/16 ( vlan 1 ) 

remote side behind red 172.17.19.0/24 ( vlan 1) managed by UTM

remote side second vlan 10.106.1.0/24 ( vlan 1001)

created a red vlan device with vlan 1001 with IP Address 10.106.1.1

have a device in this vlan (10.106.1.11)

from the  utm I can access the 10.106.1.11 but I cannot access 10.106.1.11 from Main office

i have created static routes entry in UTM but it does not work