This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Two interfaces with different networks on UTM

Hi,

I have two local interfaces enabled.

Interface 0 WAN

Interface 1 192.168.10.1

Interface 2 192.168.40.1

I am connected to VPN I want to remote into 40.x devices  but I dont seem to be able to ping 40.x network at all. I can communicate with 10.x network from outside of the office.

What would be the issue?



This thread was automatically locked due to age.
Parents
  • Hi Junseok,

    First, see #2 in Rulz (last updated 2021-02-16).

    Which remote access method are you using?  If it's the SSL VPN, please show a picture of the Edit of the Profile. If IPsec, the rule.  If L2TP/IPsec or PPTP, the relevant firewall rule(s).

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Sorry now I can ping the 40.0 network but not all of them. I need to be able to ping the PBX from VLAN SSL.

    When I am connected to VPN, I can ping both 192.168.0.254 and 192.168.40.254. 

    I need to ping 192.168.40.100 from VPN but it cannot reach. It only goes to 192.168.40.251. but if i ping from 192.168.40.254 to 192.168.40.210 it works not from VPN nor 192.168.0.254

    Interfaces

    Firewall Rules

    VPN SSL

    Network diagram

  • I recommended consulting #2 in Rulz above.  It includes the following:

    3. then the 'ICMP' tab in 'Firewall': Traceroute and Ping are regulated on the 'ICMP' tab.  The "All" service only includes TCP and UDP - none of the other IP protocols are included.

    Does that resolve your issue?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Yes the ICMP are enabled.

    I really don't know why I cannot ping from VLAN 1 to VLAN 100 IP address if they are configured on the same interface. 

    Ping to the PBX and the 40.254

    ICMP settings

Reply Children
No Data