Sophos Firewall

Discussions IPsec Between Sophos to Palo Alto

Sophos Firewall requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 1 reply
Subscribers 26 subscribers
Views 556 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPsec Between Sophos to Palo Alto

Paola Vazquez over 3 years ago

Hi team ,

I'm writing you because I have a problem with an IPsec Between Sophos XG to Palo Alto.

Currently, We have this configuration.

Sophos XG

Palo alto

But the sophos XG on the tunnel connect all the segments all to all , and the Palo is 1:1 so this generated the next issue

When configurate only a segment 1:1 on sophos xg this tunnel works

This thread was automatically locked due to age.

0 FormerMember over 3 years ago

Hi Paola Vazquez,

Thank you for reaching out to Sophos Community.

Please check strongswan.log debug events with all to all segments.

==> Login to SSH > 5. Device Management > 3. Advanced Shell

=> Run below command to put strongswan service in debugging.

# service strongswan:debug -ds nosync

=> Check strongswan.log events with below command.

# tail -f /log/strongswan.log

or

# tail -f /log/strongswan.log | grep -i "TUNNEL_NAME"

=> To stop debugging.

# service strongswan:debug -ds nosync

# service -S | grep strongswan

Share session output here or in PM.
Cancel
Vote Up 0 Vote Down

Cancel