Sophos XG v19- VPN IPSEC connected but cannot acces LAN

Question

IPSEC Remote Access is connected but cannot access LAN resources. I recently configured an IPSec remote access VPN. However, IPSec clients are unable to access authorized LAN resources. SFOS 19 Below is my configuration: 
 IPsec (sophos connect) Authentication Type: Digital Certificate Assign IP from: 192.168.10.10-192.168.10.250 (not overlapping any existing network) Use as default gateway: OFF Authorized networks: LAN, DMZ 
 FW rule 1: Source: VPN, source network: IPSec clients IP range (192.168.10.10-192.168.10.250), Destination zone: LAN;DMZ. Destination networks: all; services: all 
 
 FW rule 2: Source: LAN; DMZ , Source network: all Destination zone: VPN. Destination Networks: IPSec Client IP Range (192.168.10.10-192.168.10.250), Services: All Ping is enabled in device access under VPN.

Vishal_R · Answer

Hi JOEL HENRY : Please find the below steps on capturing TCPDUMP and Drop packet on XG CLI. Sophos Firewall: How to TCPdump https://support.sophos.com/support/s/article/KB-000036858?language=en_US if required, You may also log a support case to get further assistance to resolve the issue.

Sophos XG v19- VPN IPSEC connected but cannot acces LAN

Top Replies