We have an IPSEC Tunnel between a Sophos XG firewall and a vyatta router .
The IPsec works fine and there's no problem for normal user's connectivity
We have a problem , instead , trying to use XG's diagnostic tools to check remote connectivity
For example we tried the "ping" from XG itself , either specifying #PORT1 or #PORT2 , to the internal IP of remote router , and it fails
Pinging the remote router's IP from an internal client works fine
We tried also to add a specific firewall rule but it didn't solve .
The IPSEC's local lan definition include only the local Subnet , which include the XG internal interface obviously , should we modify it to add explicitly the XG ports
thanks
This thread was automatically locked due to age.
