Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 2 subscribers
  • Views 1725 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

External Cisco VPN connection from RED 10 site

postnospam
We have 3 remote locations that connect to the UTM at our main office with RED 10 devices configured standard/split. This configuration works flawlessly.

At each of these remote locations we need to support a Cisco ipsec VPN endpoint that will connect from behind the RED 10 to a different company's VPN. 

The Cisco VPN endpoint tries to connect to the other company's central VPN, but fails to get past init. 

The traffic to the other company's VPN shows as coming from the remote site's public IP address.

Prior to this they had AT&T VPN endpoints in the same location on our remote networks that were working.

Any suggestions on why this is is not working now?

Thanks


This thread was automatically locked due to age.
  • 0
    It looks like the RED does some sort of filtering and isn't letting anything through to its LAN side. This makes sense since as far as I know it's also not possible to DNAT from a RED's public address to the LAN side of the RED.
    I think you need a small UTM like 120 instead of a RED on those locations if you do need those IPSec connections.

    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

  • 0
    Hi, and welcome to the User BB!

    The other company doesn't know how to configure its VPN endpoints.  I'm sure that Apijnappels know that they will have the same issue with a UTM instead of the RED unless the UTM becomes the endpoint for the other company's VPN.

    pns, there are solutions, but if you're the customer, it's their problem.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML