I have a problem with the following construction:
Side A: Sophos XG -> 192.168.101.X /24 | Connected via VPN
Side B: Sophos SG -> 10.102.3.X /24 |
The VPN is active and works. I can ping to side B from side A but i cant reach side A from B with a ping.
But i am able to do a rdp from site B to a client on side A.
That means the Sophos XG blocks the ping from side A but the Sophos SG doesnt block it.
After activating Ping on the XG on site A under "Device Access" i can ping in the XG from Site b but still not any Client in site A.
I already set up rules so that the XG allows the ping but i still only get a timeout (like if i set the ICMP Rule to "drop").
In the Diagnostics tab i can even see the packages sent from side B but they still don`t arrive at the client.
PS. On the Sophos XG the OS 17.1.2 MR-2 is installed.
Edit: Also set the option 'strict-tcmp-tracking' to 'off' but the ping from side B to side A still just gives timeout messages.
This thread was automatically locked due to age.
