Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 26 subscribers
  • Views 1524 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Connect branch to Azure VPN through Head office IPsec site to site VPN

Guido Sterzing

Hi everybody,

I'm new to this community and I hope that someone can help me.

Scenario:

HeadOffice : IP Range 192.168.1.0/24, XGS2100

Branch: IP Range 192.168.2.0/24, AVM Fritz.Box, yes I know it's not the best choice :-)

Both sites are connected via site2site vpn and it works fine

HeadOffice : IP Range 192.168.1.0/24, XGS2100

Azure Ressource VNET: IP Range 192.168.3.0/24, Azure VPN Gateway Basic

Both sites are connected via tunneling vpn and it works fine

Now I want to get the connection from Branch to Azure via Headquarter.

I've already tried: https://community.sophos.com/sophos-xg-firewall/f/discussions/137346/connect-branches-through-the-head-office-ipsec-site-to-site-vpn but it didn't work. I think it could be the Azure site but I didn't find any documentation.

Does anybody has any information for me?

Thanks

Guido



This thread was automatically locked due to age.
Parents
  • +1

    Hi Guido,

    Thank you for reaching out to Sophos Community.

    Have you added the Branch office on a LAN- VPN FW rule?

    Can you share us a screenshot of your configuration?

    Also, what happens to the packet? kindly check on the log viewer and share 

    Erick Jan
    Community Support Engineer | Sophos Technical Support
    Sophos Support Videos Product Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.

  • 0 in reply to Erick Jan

    Hi Erick,

    thanks for your reply. Yes, I added a branch office to FW rules and I took a look at the log viewer. There I don't have any traffic.

    Now I've tried it with the Sophos Connect Client SSL and added FW rules. It works with Sophos Connect!

    I think that the problem is caused by FritzBox. I will investigate a little bit more and then I will send the screens of the configuration. First of all I have to do some housekeeping :-)

    Best regards

    Guido

Reply
  • 0 in reply to Erick Jan

    Hi Erick,

    thanks for your reply. Yes, I added a branch office to FW rules and I took a look at the log viewer. There I don't have any traffic.

    Now I've tried it with the Sophos Connect Client SSL and added FW rules. It works with Sophos Connect!

    I think that the problem is caused by FritzBox. I will investigate a little bit more and then I will send the screens of the configuration. First of all I have to do some housekeeping :-)

    Best regards

    Guido

Children
Unfiltered HTML