Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 26 subscribers
  • Views 678 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Multiple vpn zone

Muhammad Tusher

Hello ,

Is it possible to create multiple VPN zone ?

suppose

IPSEC connection-1  to VPN-zone 1

IPSEC connection-2 to VPN-zone 2

This will separate the different departments.

Please suggest how to configure this type configuration.

Sophos XG Firewall version 18

Thanks

Muhammad



This thread was automatically locked due to age.
Parents
  • 0

    Hello Muhammad,

    Thank you for contacting the Sophos Community!

    Not possible to have multiple VPN zone.

    Could you please describe how is your IPSec tunnel configured?

    Do you only have a SA in the tunnel or you have two?

    If you have in your side

    172.16.16.0/24

    172.16.17.0/24 

    and the other side only has 10.10.10.0/24 

    You can separate the traffic via Firewall rules

    Create one Firewall rule for each network going to the VPN

    Zone = LAN Local Network 172.16.16.0/24  

    Zone = VPN Remote Network 10.10.10.0/24

    And the other one

    Zone = LAN Local Network 172.16.17.0/24

    Zone = VPN Remote Network 10.10.10.0/24

    For traffic coming back would be the same rule for each only that viceversa

    Regards,

Reply
  • 0

    Hello Muhammad,

    Thank you for contacting the Sophos Community!

    Not possible to have multiple VPN zone.

    Could you please describe how is your IPSec tunnel configured?

    Do you only have a SA in the tunnel or you have two?

    If you have in your side

    172.16.16.0/24

    172.16.17.0/24 

    and the other side only has 10.10.10.0/24 

    You can separate the traffic via Firewall rules

    Create one Firewall rule for each network going to the VPN

    Zone = LAN Local Network 172.16.16.0/24  

    Zone = VPN Remote Network 10.10.10.0/24

    And the other one

    Zone = LAN Local Network 172.16.17.0/24

    Zone = VPN Remote Network 10.10.10.0/24

    For traffic coming back would be the same rule for each only that viceversa

    Regards,

Children
No Data