Rule setup for AD Domain Trust

I would rather switch to RED Site to Site. That should be easier and stable to use. 

https://support.sophos.com/support/s/article/KB-000036362?language=en_US

It was something I completely overlooked.  I created a DNS forwarder in each domain, resolved it.  While I do like the idea of a RED solution, each site benefits with an XG because each site will have remote users, and require SSLVPN connectivity. 

Thanks for being a great sounding board.  Harsh's suggestion about the DNS request route sparked a thought that ultimately got me where I needed to be.  Thanks.

It was something I completely overlooked.  I created a DNS forwarder in each domain, resolved it.  While I do like the idea of a RED solution, each site benefits with an XG because each site will have remote users, and require SSLVPN connectivity. 

Thanks for being a great sounding board.  Harsh's suggestion about the DNS request route sparked a thought that ultimately got me where I needed to be.  Thanks.

Hi Philip Gardner,

Thanks for the update, and I'm glad that it worked for you. 

However, as LuCar Toni suggested, the RED Site to Site tunnels between two XG firewalls would be the perfect solution for your requirement. 

Check out the configuration document here: Create a site-to-site RED tunnel

Thanks,