Dear Experts, would like to seek your advise why the firewall XG135 failed to connect to domain controller (for SSL VPN Active Directory authentication) that was promoted in Azure.
The below is the setup of my network:
Network - Hybrid (Azure site-to-site VPN tunnel)
On-premises (192.168.88.x/24) - Firewall (LAN: 192.168.88.254) - Azure LAN (192.168.99.x/24)
The above setup has been up and running for more than 1 year. The on-premises servers (192.168.88/24) can connect (any ports) to/back Azure servers without having any restriction.
I have recently promoted an Azure server as Domain controller and the AD replication is working fine. This newly promoted DC was added as an AD authentication server in Sophos firewall for SSL VPN. The test connection was failed, and noticed the firewall couldn't ping the new DC (192.168.99.43) in Azure using Sophos Diagnostics Tool.
The new DC (192.168.99.43) could ping and web access to Sophos firewall. The ldap.exe test connection from on-premises DC to Azure DC was successful as well.
Kindly please advise why the Sophos firewall couldn't connect to the Azure DC, and as well as any other servers on Azure.
Thanks.
This thread was automatically locked due to age.
