Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 21 replies
  • Subscribers 2 subscribers
  • Views 18536 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM to UTM using RED Tunnel

3PNTSTech
Hi there, 
I've been looking for a solution to this, however can't find the exact thing I'm looking for. 

So I'm sure this is a easy fix, and I hope someone can help. 

UTM9.1 to UTM9.1 via RED Tunnel

Both have public IPs 

I was able to establish a connection with via a RED tunnel. both are green

However I can't ping either side, or see the other network. 

UTM9 Server - RED2 (has an actual RED device) Setup interface with IP 192.168.33.x
UTM9 Client Setup interface with IP 192.168.100.x

I have tried this:

Configuring Firewall Rules on UTMS = UTMS ANY UTMC & UTMC ANY UTMS
and 
Configure Firewall on UTMC = UTMC ANY UTMS & UTMS ANY UTMC

What am I missing here? 

I read a few threads regarding Bridging the RED interface with the Internal LAN, but I can't seem to do that?   Or it doesn't provide any option to do so. 

Thoughts?


This thread was automatically locked due to age.
Parents
  • 0
    With an SSL VPN, you can't have the same subnet on both sides without a lot of fancy NATting.  The best reason to use a RED tunnel instead of a VPN between two UTMs is because you need to have the same subnet (no duplicated IPs!) on both sides.  See my coach story.

    If you don't need the same subnet on both sides, I believe the VPN solution is to be preferred.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    With an SSL VPN, you can't have the same subnet on both sides without a lot of fancy NATting.  The best reason to use a RED tunnel instead of a VPN between two UTMs is because you need to have the same subnet (no duplicated IPs!) on both sides.  See my coach story.

    If you don't need the same subnet on both sides, I believe the VPN solution is to be preferred.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML