Assistant with setting up MPLS

Question

Hi All, 
 I am having trouble getting my MPLS to working between 2 Sophos firewalls. 
 Here is my topology: 
 
 I have tried putting routes in place etc.. but cannot get it to work and just getting confused now. Is anyone able to confirm what I need to do to get traffic flowing over the MPLS Circuit? 
 I have the relevant firewall rules in place for site A subnet to site B subnet, but I would love it if someone could help? 
 Thanks all!

BeEf · Answer

We have set this up sucessfully. With a) internet breakout at the MPLS Provider and b) with dedicated internet breakout. And c) with default route 0.0.0.0 and breakout on another site. On the central site basically like the setup on the picture: Terminating MPLS on a router/switch that is connected to the firewall. You need to set the proper static routes. You need also to define the policies (setting up explicit deny rules on both sides + putting on logging and traceroute from both sides should help). You also need to be sure that the local networks are actually transmitted through the MPLS (ask your provider).

FormerMember · Answer

Hi notapplemaxwindows1 , 
 Check out the following Community thread for a more detailed explanation: https://community.sophos.com/xg-firewall/f/discussions/74536/routing-with-mpls 
 Thanks,

Assistant with setting up MPLS

Top Replies