https://community.sophos.com/utm-firewall/unified-threat-management-beta/utm_94_beta/f/sophos-utm-9-4-public-beta/74701/bug-site2site-ssl-routes-not-used-if-more-than-1-connection-is-upsay i have a Local Network of 192.168.10.0/24 and i have two Site2Site Connections to LAN 192.168.20.0/24 and 192.168.22.0/24 OVER ipv4, the Bug is i can only reach either 192.168.20.0/24 OR 192.168.22.0/24 depending on which order i brought them up.en-USTelligent Community 12https://community.sophos.com/thread/289793?ContentTypeID=1Wed, 09 Mar 2016 01:05:25 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:253f3204-fddc-4bfa-9242-7b504f523102Ben<p>not sure where else to post this, but i have this bug with 9.355 (latest stable release) aswell,</p> <p>didnt notice earlier because i have these site2sites just up for testing purposes.</p><div style="clear:both;"></div>https://community.sophos.com/thread/289379?ContentTypeID=1Fri, 04 Mar 2016 01:45:45 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:161b0277-4d2a-464f-9202-41715c829a55Ben<p>can confirm, problem solved in beta2, all working now!</p><div style="clear:both;"></div>https://community.sophos.com/thread/287659?ContentTypeID=1Wed, 17 Feb 2016 04:01:06 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:1067260a-a51c-4b69-ba2b-58b0a4b77c76HeikoHundOk we fixed the issue, thanks for the report. Next Beta will work as expected.<div style="clear:both;"></div>https://community.sophos.com/thread/287657?ContentTypeID=1Wed, 17 Feb 2016 03:58:47 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:44814fb1-7939-4990-922b-b99f8f9db591BenHi Kofi,<br /> thanks for the update! Now please fix Ipv6 Prefix Delegation over PPPoE and i&#39;ll be happy ;-)<div style="clear:both;"></div>https://community.sophos.com/thread/287656?ContentTypeID=1Wed, 17 Feb 2016 03:53:33 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:c0917df4-a2b8-4a14-bbdc-df28e4a22e65kofiHi Ben,<br /> <br /> I just want to inform you that we can reproduce the issue and currently working on a fix.<br /> <br /> Thanks for reporting this issue.<br /> <br /> The plan is to have a fix in the next Beta.<br /> <br /> Cheers,<br /> Kofi<div style="clear:both;"></div>https://community.sophos.com/thread/287357?ContentTypeID=1Fri, 12 Feb 2016 14:58:03 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:a9319f2c-fa40-4eba-b65e-0df038fd8396Ben<p>TCP. My home sophos with 9.4 beta is server for 2 connections that are affected, 1 as client i use over ipv6. The two connections not over ipv6 that connect via ipv4 as clients run the latest 9.3 firmware.</p> <p>this is my Site2Site Overview:</p> <p><a href="/cfs-file/__key/communityserver-discussions-components-files/140/3377.Screen-Shot-2016_2D00_02_2D00_12-at-21.56.07.png"><img src="/resized-image/__size/940x400/__key/communityserver-discussions-components-files/140/3377.Screen-Shot-2016_2D00_02_2D00_12-at-21.56.07.png" alt=" " /></a></p> <p>if i toggle either one of the IPv4 Site2Site off (the one for 192.168.20.0/24 or 192.168.22.0/24) i can access the other one and vice versa -&gt; more specific, the one ssl vpn connection that got established first is useable. BONUS Info: traceroute shows that the connection that is not pingable on the UTM IP (for example 192.168.20.100) is trying to get routed outside over WAN so it seems home sophos utm doesnt set a route for the network. It is not pingable directly on the sophos either.</p> <p>The IPsec i got up and the IPv6 Connection seem unaffected by either of these.</p> <p>I am willing to provide access if needed if its over the weekend via webadmin, ssh or teamviewer if any dev wants to have a look.</p> <p>I was able to access both 192.168.20.0/24 and 192.168.22.0/24 when i was on latest 9.3 release.</p><div style="clear:both;"></div>https://community.sophos.com/thread/287345?ContentTypeID=1Fri, 12 Feb 2016 11:44:15 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:e16dbf2f-e2d6-46d7-86d5-f24c081bfb19HeikoHundDo you use TCP or UDP? What type are the two connections client or server?<div style="clear:both;"></div>https://community.sophos.com/thread/287332?ContentTypeID=1Fri, 12 Feb 2016 09:58:02 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:87a5c042-7cef-4a79-9195-c261be7316caHolgerLehnHi Ben,<br /> <br /> thank you for your post. We will check this issue with development. As soon as I receive an update, I will come back to you.<br /> <br /> Greetings<br /> Holger<div style="clear:both;"></div>