Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 2 subscribers
  • Views 4578 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

RED UTM to UTM not working

tony62386
Hello,

I am trying to establish a VPN connection between two UTMs via RED. I was able to successfully establish the connection, but for some reason I am unable to access resources on either side.

I am thinking my static routing is not set up right but I am not sure what I am doing wrong. Below is my static route setup

Attached is my static routing setup.


Server.PNG

client.PNG

server red connection.PNG

client red connection.PNG


This thread was automatically locked due to age.
Parents
  • 0
    Yes, Tony, SSL using TCP is really SLLLLOOOOWW!  Changing to UDP will make it much faster, but not as fast as the IPsec tunnel I suggested above.

    I recommend using X509 certs for businesses.  Follow the guide provided on the KnowledgeBase: How to create an X509 key based Site-to-Site VPN: Astaro Security Gateway 

    For a simple situation where there will never be more than two sites connected, exchanging local RSA keys is still strong security.  Before you do that, confirm that both sites have generated 2048-bit keys on the 'Local RSA Key' tab.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Yes, Tony, SSL using TCP is really SLLLLOOOOWW!  Changing to UDP will make it much faster, but not as fast as the IPsec tunnel I suggested above.

    I recommend using X509 certs for businesses.  Follow the guide provided on the KnowledgeBase: How to create an X509 key based Site-to-Site VPN: Astaro Security Gateway 

    For a simple situation where there will never be more than two sites connected, exchanging local RSA keys is still strong security.  Before you do that, confirm that both sites have generated 2048-bit keys on the 'Local RSA Key' tab.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML