Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 26 subscribers
  • Views 670 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cisco VPN not working after adding Sophos XG in bridge mode

Todd Simmons

My original network was setup as follows:

Cisco router ---> Cisco switches --. rest of network

IP address for network 192.168.0.0/24 

Cisco IPsec VPN assigns address 192.168.1.0/24

Through the VPN I am able to work normally as if I am connected to the network locally.

When I install the Sophos XG (bridge mode) into the network, everything locally works.

When I VPN into the network i can connect, but that is all.

I cannot reach any devices on the 192.168.0.0 network

When I ping a 192.168.1.0 address from a computer on 192.168.0.0 i get responses back, but trying to ping from the 192.168.1.0 network to the 192.168.0.0 network, nothing passes.

Any help would be greatly appreciated. 



This thread was automatically locked due to age.
  • 0

    Hello Todd,

    Thank you for contacting the Sophos Community.

    Does your Network is now Cisco Router -->> XG Firewall --> Cisco Switches --> Res of Network?

    If that is the case the XG in Bridge mode shouldn't affect the traffic. But you could SSH into the XG and see if you see traffic arriving at the XG from 192.168.1.0.

    Regards,

  • 0

    Cisco Router --> XG Firewall --> Cisco Switches --> Rest of Network (192.168.0.0, 192.168.1.0, 192.168.2.0)

    I was able to get the VPN network working by adding a firewall rule.

    Tried adding a firewall rulle to allow everything in and out of the firewall and then I can ping the 192.168.2.0 network, but RDP will not work to that network.

    But cannot connect to the 192.168.2.0 network from the 192.168.0.0 network. Removing the firewall and everything works perfect.

     

  • 0 in reply to Todd Simmons

    Hello Todd,

    Where does Network 192.168.2.0 is located?

    Did you get a change to SSH into the XG and do a tcpdump/pcap to see what is happening to the RDP traffic?

    Regards,