Hello,
we are trying to replace a fortigate firewall with an Sophos XG. Our central firewall is already an XG.
Configuration Parameters and Policies on both sides are okay.
When we establish the tunnel ping to all relvant servers (mailservers, fileserver, , websurfing with http and citrix sessions are working. The explorer is blocking and we are also not able to access the Exchange Servers with OWA or Outlook anywhere. There seems also to be an issue with AD Logins.
The internet connection is PPPoE with an IPSec Tunnel. Access to the Exchange Server is TLS encrypted, for the Fileserver I am not sure and the communication with AD should also be encrypted.
The MTU without fragmentation is 1464. I already tried to change the MTU to a significant lower value and did not see any changes.
The MTU on the PPPoE WAN interface of the (working) fortigate is 1500. The same value is configured on the Sophos XG.
The IPSec Parameters are set according to a working connection XG <-> SG.
I do not see anything in the FW that might be responsible for the behaviour.
We suspect some problems with the sophos xg on the remote site (ppoe, multiple encryption, fragmentation, loss of data).
Any Idea what might be wrong?
This thread was automatically locked due to age.
