I'm having issues getting a static route or SD-WAN route to work on my XGS 116 (19.5 MR1 firmware). I am in the process of replacing aging SonicWall devices with Sophos and it's mostly going ok, except for this issue. The network layout is fairly simple:
- Local network is 192.168.60.0/24
- Three remote locations at 192.168.10.0/24, 192.168.20.0/24, and 192.168.30.0/24
I want to access the remote locations via a gateway VM running ZeroTier. This has been fairly simple in the past, all I needed to do was add a next hop indicating that the remote network was available via the gateway VM's IP (in this case 192.168.60.139). I have tried this with both a static route as well as with an SD-WAN route, but the behavior is strange:
- Remote machines can access the local network with no issue, ping and HTTPS work just fine.
- Local machines can ping machines in a remote network, but cannot access anything over HTTPS or other TCP protocols.
- Checking the log viewer, the packets are being dropped as "Invalid Traffic" with the reason "Could not associate packet to any connection."
I currently have the route configured via SD-WAN:
I also added a firewall rule which was necessary to allow any traffic going LAN to LAN:
What am I missing?
This thread was automatically locked due to age.
