This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Xg firewall trouble with vpn to another xg firewall on azure

Gretings i had a firewall on azure and a local firewall, i've stabilished the IPSEC VPN on from one to another, but it doesn't comunicate properly, i had the 10.1.2.0/24 on azure and a 192.168.10.0/24 and 192.168.0.0/24 on my local network, from azure machines i can ping on machines that are from the network 192.168.0.0/24 and the reverse does it so, but from azure i can ping from 10.1.2.0/24 to 192.168.10.0/24 but the inverse does not ocours, so basically we had

192.168.0.0/24 <=> 10.1.2.0/24 OK!!!!

192.168.10.0/24 <=> 10.1.2.0/24 NOT OK!!!!

10.1.2.0/24 <=> 192.168.0.0/24 OK!!!!

10.1.2.0/24 <=> 192.168.10.0/24 OK!!!

This thread was automatically locked due to age.

Top Replies

emmosophos over 5 years ago in reply to Joao Augusto +1

Hello Joao,

Thank you for the follow-up!

Is the SA for these two subnets in green color in the IPsec in the XGs?

What is the output of the command below:

# ip route get 10.1.2.x (x= a host IP of a device)

Run the command from the XG that has the subnet 192.168.10.0/24

Also the output of this command

# ipsec statusall

Regards,
Jump to answer

0 emmosophos over 5 years ago in reply to Joao Augusto

Hello Joao,

What is the output of the commands I mentioned above, now that you have made this change?

Regards,

Emmanuel (EmmoSophos)

Technical Team Lead, Global Community Support
Sophos Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.
Cancel
Vote Up 0 Vote Down

Cancel