Routing Problem with Sophos XG

Question

Hello, 
 i have a problem and i hope you can help me: 
 
 1) I have a zone called >RED, with my REDs in branch offices (Ip-network: 192.168.41.1/24) 
 2) I have some destinitions which are connected with IP-Sec connections (IP-Network: 172.30.200.0/24) 
 
 My problem: A notebook in a branch office (192.168.41.101) want to connect to a destinition which located in IP-Sec-connection. 
 
 I think i have to make a static routing and make a rule in the firewall. But i make a mistake i think. 
 Thanks

Vivek Jagad · Answer

Hi Oliver,

Thank you for your query, So you have RED tunnel ?
Which wants to communicate over the IPsec tunnel ?

Under the IPsec connection have you mentioned the RED network under the local network and on the remote location RED network as the remote network?

Do you have a rule in place for the traffic RED to VPN and VPN to RED ?

Can you Monitor traffic using Packet Capture Utility : https://support.sophos.com/support/s/article/KB-000035761?language=en_US ?

And from the console, can you verify whether the traffic is going into the IPsec connection ?
from the console> system diagnostics utilities route lookup <ipsec network ip address>

Thanks & Regards,
_______________________________________________________________

Vivek Jagad | Team Lead, Global Support & Services

Sophos Community | Product Documentation | Sophos Techvids | SMS
If a post solves your question please use the 'Verify Answer' button.

Bharat J · Answer

Hi Oliver Wamsler1 
 Please make sure you have firewall rules from VPN to LAN and LAN to VPN 
 Thanks and Regards

Vivek Jagad · Answer

As it is an IPsec connection, have you created a rule for RED to VPN and VPN to RED rules ?

Routing Problem with Sophos XG

Top Replies

Submitted a Tech Support Case lately from the Support Portal?