Sophos XG 17.5.14-1 and RED 60 - No Traffic from Branch 2 Head Office

Question

Hi, 
 i have a RED60 device and followed the Sophos documentation and several YouTube Videos for a Basic Setup. 
 Like this from sophos support: Sophos XG Firewall (v17): Adding a RED Device 
 I had a Basic Setup with a RED Device in Standard/Unified Mode and added 2 Firewall Rules like in this Video. 
 Local LAN is 192.168.0.0/24 and Sophos XG has 192.168.0.254 
 RED Setup

And two Firewall rules 
 
 From a Branch Office PC i can ping the internal IP of the XG (192.168.0.254). 
 But i can&acute;t ping intern Server like 192.168.0.194 (Gateway for all internal Servers is 192.168.0.254) 
 And i can&acute;t browse the Internet. Red Device is behind a LANCOM Router and is connected to Sophos XG 
 
 Where is my error? 
 Can someone help for this Basic Setup? 
 Thanks 
 J&uuml;rgen

FormerMember · Accepted Answer

Hi juergenb52 , 
 Thank you for reaching out to the Community! 
 The first step to troubleshoot issues related to the traffic is to take a packet capture on the firewall. With packet capture, you could find out if the traffic is dropped or forwarded by the firewall. 
 Is ICMP allowed on your internal servers? 
 Could you please try to add the RED network to the source network instead of the interface #reds1? 
 Check out the following KBA for more info: Sophos XG Firewall: How to monitor traffic using packet capture utility in the GUI . 
 Please provide the screenshot of the packet capture. 
 Thanks,

Sophos XG 17.5.14-1 and RED 60 - No Traffic from Branch 2 Head Office

Top Replies