This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

L2tp over Ipsec > Red

Hello,

Main office utm 9, secondary office with a red box connected to my utm in standard / split mode.

All connection from the red network to the defined utm zones works as expected....

BUT it is not possible to connect from my road warriors (l2tp over ipsec) clients to my red network ?

Do I just have to define the remote red hosts or networks in network definitions at the utm to achieve this or do I have to define special routing tables ?

Cheers

This thread was automatically locked due to age.

Parents

0 BAlfson over 6 years ago

Routes are created automatically once you redefine the RED's 'Split Networks' to include the "VPN Pool (L2TP)" object. If the road warriors are using a split tunnel ('Use default gateway on remote network' has been unselected in the users client), each will need a route in their laptop to send traffic to the RED to the UTM (probably 10.242.3.1). If you're still having problems, check the Firewall log.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 6 years ago

Routes are created automatically once you redefine the RED's 'Split Networks' to include the "VPN Pool (L2TP)" object. If the road warriors are using a split tunnel ('Use default gateway on remote network' has been unselected in the users client), each will need a route in their laptop to send traffic to the RED to the UTM (probably 10.242.3.1). If you're still having problems, check the Firewall log.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 mfpck over 6 years ago in reply to BAlfson

THX!
Cancel
Vote Up 0 Vote Down

Cancel