Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 27 subscribers
  • Views 765 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

2 Datacentres, 3 Sohpos appliances, IPSec

Allan Pumphrey

Hi, 

 

I have a sophos XG210 in Datacentre A with a lan IP os 10.101.3.0/24

In Datacentre B I have a XG210 with a DMZ of 10.101.105.0/24

Datacentra A and B are connected using IPSEC

 

The problem is that in Datacentere B I have another firewall layer between the DMZ and LAN that has a LAN ip or 10.101.5.0/24

 

Can anyone tell me how I can connect Datacentre A's 10.101.3.0/24 with Datacentre's B Lan 10.101.5.0/24?

 

With IPSec I can ping from 10.101.3.0/24 and reach 10.101.105.0/24 so I just need that last route/rule to get it from 10.101.105.0/24 to 10.101.5.0/24

 

Much appreciated

 



This thread was automatically locked due to age.
  • +1

    Hello Allan,

    I have a question about your requirement since there is a firewall between 10.101.105.0 amd10.101.5.0 then that firewall should manage the communication. How is this traffic related to IPsec?

    If you want network10.101.3.0/24 to communicate with 10.101.5.0/24, then you may add a network source in IPsec connection profile on site B as 10.101.5.0 and on-site A the destination network 10.1015.0/24 is needed to be added.

  • 0

    I ended up sorting this by adding all the network subnets 10.101.5.0 and 10.101.105.0 10.101.3.0 into the IPSEC configurations on both the HeadOffice and BranchOffice profiles as well the the firewall rules.