Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 26 subscribers
  • Views 12515 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

RED15w problem on reaching lan devices when tunnel is down and others

malachite

Hi everyone, I find several difficulties in configuring a red15w on a XG105w.
I want to pass only part of the traffic through the tunnel and for this reason I configured the RED15w with Uplink Connection in DHCP and "RED OPERATION MODE" in Transparent Split.
The red is connected in this way: RED WAN with router Ethernet port and a RED LAN port is connected to lan switch.
First problem: The RED15w connects properly but after a few hours it disconnects and then reconnects.
This behavior is repeated after a few hours (I opened a ticket to Sophos to investigate).
Second big problem: with this configuration if the wan and tunnel fails, lan devices can not be reached either.
How can I fix at least the second problem?



This thread was automatically locked due to age.
Parents
  • 0

    Malachite,

    for the second issue you cannot do nothing. Think like RED as an appliance that permits a layer 2 S2S VPN to XG. If the tunnel goes down, you cannot access the remote resources.

    Also because RED15w comes with wi-fi, all the wi-fi users will also disconnect and will not have access to even local resources. This is how it works.

    I remember a feature request to allow RED 15w Wi-Fi users to keep the connection even when the tunnel goes down but I cannot find the link/feature request.

  • 0 in reply to lferrara

    Hi Luk, thanks for you time. I know that when the tunnel goes down I can't access the remote resources but my problem is that when the tunnel falls I can not reach the local network devices even with wired connection.

    Best regards

    Malachite

  • 0 in reply to malachite

    You need to provide us more info in order to help you.

    RED acts as DHCP server too on your remote location, correct?

    Thanks

Reply Children
  • 0 in reply to lferrara

    lferrara said:

    You need to provide us more info in order to help you.

    RED acts as DHCP server too on your remote location, correct?

    Thanks

     

    No. The RED don'act as a DHCP server. When I use the "RED OPERATION MODE" in Transparent Split I can't set a dhcp server on the red.

    This is my scenario:

    Main Office:

        1) Router and sophos XG105W
        2) XG Port1 (LAN) and Port2 (WAN) setting in bridge mode because I don't have a public ip
        3) XG Port2 connected to Router and Port1 connected to LAN switch
        4) DHCP server disabled on router and enabled on XG Bridge interface
        5) Main office LAN: 192.168.0.0/24

    Branch Office:
        1) Router with DHCP server enabled
        2) Sophos RED15w with Uplink Connection setting in DHCP and "RED OPERATION MODE" in Transparent Split.
        3) RED Wan port connected to an ethernet port of my router
        4) RED LAN port connected to Branch office Lan Switch
        5) branch office LAN: 192.168.1.0/24

    When the tunnel fails the branch office is isolated: can't reach the remote devices; can't reach the local devices