This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cisco VPN not working after adding Sophos XG in bridge mode

Todd Simmons over 4 years ago

My original network was setup as follows:

Cisco router ---> Cisco switches --. rest of network

IP address for network 192.168.0.0/24

Cisco IPsec VPN assigns address 192.168.1.0/24

Through the VPN I am able to work normally as if I am connected to the network locally.

When I install the Sophos XG (bridge mode) into the network, everything locally works.

When I VPN into the network i can connect, but that is all.

I cannot reach any devices on the 192.168.0.0 network

When I ping a 192.168.1.0 address from a computer on 192.168.0.0 i get responses back, but trying to ping from the 192.168.1.0 network to the 192.168.0.0 network, nothing passes.

Any help would be greatly appreciated.

This thread was automatically locked due to age.

0 emmosophos over 4 years ago

Hello Todd,

Thank you for contacting the Sophos Community.

Does your Network is now Cisco Router -->> XG Firewall --> Cisco Switches --> Res of Network?

If that is the case the XG in Bridge mode shouldn't affect the traffic. But you could SSH into the XG and see if you see traffic arriving at the XG from 192.168.1.0.

Regards,

Emmanuel (EmmoSophos)

Technical Team Lead, Global Community Support
Sophos Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.
Cancel
Vote Up 0 Vote Down

Cancel
0 Todd Simmons over 4 years ago

Cisco Router --> XG Firewall --> Cisco Switches --> Rest of Network (192.168.0.0, 192.168.1.0, 192.168.2.0)

I was able to get the VPN network working by adding a firewall rule.

Tried adding a firewall rulle to allow everything in and out of the firewall and then I can ping the 192.168.2.0 network, but RDP will not work to that network.

But cannot connect to the 192.168.2.0 network from the 192.168.0.0 network. Removing the firewall and everything works perfect.
Cancel
Vote Up 0 Vote Down

Cancel
0 emmosophos over 4 years ago in reply to Todd Simmons

Hello Todd,

Where does Network 192.168.2.0 is located?

Did you get a change to SSH into the XG and do a tcpdump/pcap to see what is happening to the RDP traffic?

Regards,

Emmanuel (EmmoSophos)

Technical Team Lead, Global Community Support
Sophos Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.
Cancel
Vote Up 0 Vote Down

Cancel