Hello Everyone,
I was wondering if anyone can help me. I am trying to setup an IPsec Site-to-Site VPN between 2 SG105 UTM's. Both the local and the remote networks are the same subnet. Unfortunately it would be very difficult to change either side to a different network. I followed this guide, https://support.sophos.com/support/s/article/KB-000034290?language=en_US But as of yet I am unsuccessful. I was wondering if anything sticks out to anyone as something this guide failed to mention? The tunnel is configured properly and comes up no problem, but traffic will not pass between the two networks.
UTM1 network - 192.168.0.0/22
UTM1 "fake" NATed Network - 172.21.0.0/22
Outgoing Rule - 1:1 NAT Map Source, Local Network > Any > Remote NATed Lan = Source translation: Local NATed Lan
Incoming Rule - 1:1 NAT Map Destination, Remote NATed Lan > Any > Local NATed Lan = Destination translation: Local Network
UTM2 network - 192.168.0.0/22
UTM2 "fake" NATed Network - 172.22.0.0/22
Outgoing Rule - 1:1 NAT Map Source, Local Network > Any > Remote NATed Lan = Source translation: Local NATed Lan
Incoming Rule - 1:1 NAT Map Destination, Remote NATed Lan > Any > Local NATed Lan = Destination translation: Local Network
I used all the automatic firewall rules as well.
I used the /22 network as my fake NATed lan because it would not let me create 1:1 Nat between networks of different sizes. Let me know if anyone has an idea where I should start looking.
Thanks, Matt
This thread was automatically locked due to age.