Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 26 subscribers
  • Views 438 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos VPN

Ihenock

Hi All

i have sophos xg at head office and Kerio UTM at the branch and whenever the branch user starts rdp to HQ the VPN disconnected and i couldn't figure out what the problem is. sophos is respond only since I didn't have public ip for the branch I use * as a public when I create the VPN wizard



This thread was automatically locked due to age.
  • FormerMember
    0 FormerMember

    Hi ,

    Thank you for reaching out to the Community! 

    Could you please try to activate the IPsec VPN connection and collect the strongswan logs in debugging? 

    • Steps to put the strongswan service in debug:
      • SSH into the XG firewall by following this KBA: Sophos XG Firewall: How to SSH to the firewall using PuTTY utility
        • To connect using SSH, you may use any SSH client to connect to port 22 of the SFOS device.
        • Select option 5 Device Management.
        • Select option 3 Advanced Shell.
      • To put the strongswan service in debug, type the following command: service strongswan:debug -ds nosync
        • Output
          • SFVUNL_AZ01_SFOS 18.0.3 MR-3# service strongswan:debug -ds nosync
            200 OK
      • Run the following command to check the status of the service: service -S | grep strongswan
        • Output
          • SFVUNL_AZ01_SFOS 18.0.3 MR-3# service -S | grep strongswan
            strongswan RUNNING,DEBUG
      • Note: Run the same command to remove the service from the debug.
    • To check the live logs run the following command from Advanced Shell: tail -f strongswan.log

    Thanks,