Hi there,
I was asked to replace an old Firewall which reached EOL and wasn't supported anymore. That Firewall handeld the VPN-Connection to our Cloud-Infrastructure. As a replacement for our old Firewall we chose the Sophos XG-86. I got the VPN tunnels working after a short amount of time and I'm able to access all our cloud resources from the 172.16.16.0/24 network Sophos automatically creates in the Setup-Wizard. However, all of the clients and local users are behind a different Firewall from Unifi.
Our previous Firewall had its LAN network connected to the WAN2 Port of our main FW. Which in turn had a route in place that forwarded all traffic for our cloud subnets towards the Gateway of our old FW which then moved the traffic through to the VPN.
With the new Firewall I just can't seem to get that working. One of the subnets behind the Unifi Gateway is 10.10.0.0/24 from which I can ping and access the XG-86 over the IP: 172.16.16.16. We also have a route in place to send traffic towards the 172.16.16.16 as a Gateway but a traceroute reveals that everything times-out.
I know that this setup is far from ideal but changing the structure of the network is currently not an option for my boss. We've had this working for years and it surely must be possible with the XG-86. Does anyone have an idea what I've missed or where I need to add a route?
Thanks in advance,
C. Zerbe
This thread was automatically locked due to age.