This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG SSL Site-to-Site / Openwrt OS -Raspbian OS

Hi,

I'm trying to make a site-to-site tunnel using one Sophos XG and a remote raspberry whit Openwrt or Raspbian OS

this is remote config:

client
proto udp
dev tun
ca server_OFFICE-ca.crt
cert server_OFFICE.crt
key server_OFFICE.key
remote my.office.com 443
auth-user-pass server_OFFICE.auth
auth SHA512
cipher AES-256-CBC
user nobody
group nogroup
verb 2
mute 20
keepalive 10 120
comp-lzo
persist-key
persist-tun
float
resolv-retry infinite
nobindcomp-lzo no
route-delay 4
verb 3
reneg-sec 0

works, tun0 came up, but remote can't add a route to my office lan

Thu Aug 22 20:03:57 2019 /sbin/ip addr add dev tun0 172.22.198.193/26 broadcast 172.22.198.255
Thu Aug 22 20:04:01 2019 /sbin/ip route add 172.22.201.0/24 via 172.22.198.192
Error: Nexthop has invalid gateway.

If I try the same config on my windows notebook whi openvpn community client and works like a charm

This thread was automatically locked due to age.

Parents

0 LuCar Toni over 6 years ago

Did you try to follow this KBA?

https://community.sophos.com/kb/en-us/125368
Cancel
Vote Up 0 Vote Down

Cancel
0 marco migliorini over 6 years ago in reply to LuCar Toni

Yes ,

but on Openwrt OS on on Raspbian OS dosen't work (Site to Site and simple Client conf )

tomorrow I try on a ubuntu desktop vm
Cancel
Vote Up 0 Vote Down

Cancel
0 marco migliorini over 6 years ago in reply to marco migliorini

Same error using a UBUBTU x86/x64 virtual machine

172.22.198.255
Mon Sep 2 15:50:44 2019 /sbin/ip route add 172.22.201.0/24 via 172.22.198.192
Error: Nexthop has invalid gateway.
Mon Sep 2 15:50:44 2019 ERROR: Linux route add command failed: external program exited with error status: 2
Mon Sep 2 15:50:44 2019 /sbin/ip route add 172.22.202.0/24 via 172.22.198.192
Error: Nexthop has invalid gateway.
Mon Sep 2 15:50:44 2019 ERROR: Linux route add command failed: external program exited with error status: 2
Mon Sep 2 15:50:44 2019 GID set to nogroup
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 marco migliorini over 6 years ago in reply to marco migliorini

Same error using a UBUBTU x86/x64 virtual machine

172.22.198.255
Mon Sep 2 15:50:44 2019 /sbin/ip route add 172.22.201.0/24 via 172.22.198.192
Error: Nexthop has invalid gateway.
Mon Sep 2 15:50:44 2019 ERROR: Linux route add command failed: external program exited with error status: 2
Mon Sep 2 15:50:44 2019 /sbin/ip route add 172.22.202.0/24 via 172.22.198.192
Error: Nexthop has invalid gateway.
Mon Sep 2 15:50:44 2019 ERROR: Linux route add command failed: external program exited with error status: 2
Mon Sep 2 15:50:44 2019 GID set to nogroup
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 LuCar Toni over 6 years ago in reply to marco migliorini

Can you please add some screenshots of your XG config of SSLVPN?
Cancel
Vote Up 0 Vote Down

Cancel
0 marco migliorini over 6 years ago in reply to LuCar Toni
Cancel
Vote Up 0 Vote Down

Cancel