Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 13 replies
  • Subscribers 4 subscribers
  • Views 1360 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

No Connection through an Site2Site tunnel with IPSec

NicoM

Good Morning,

i set up an IPSec Tunnel between two SG230 a year ago.
Since 4 days now, the tunnel is still established, there is no traffic going through the tunnel. Everything looks good so far until i try to geht access to the other network.
In the log of the firewall, i see the allowed packages (From the sIte where i start the request).
I already set up a new one with automatic firewall rules on both sites, but got still the same problem.

Both Device has the Firmware: .9707-5



This thread was automatically locked due to age.
Parents
  • 0

    Hallo Nico,

    Do you see anything blocked in the firewall log?  Anything different in the IPsec log compared to a week prior?

    If the name of the IPsec Connection at your site is "Munich"

         cc get_object_by_name ipsec_connection site_to_site 'Munich'|grep \'ref

    That should give something like REF_IpsSitMunich.  Watch the traffic in the tunnel with:

        espdump -n --conn REF_IpsSitMunich -vv

    Cheers - Bob

  • 0 in reply to BAlfson

    Hello Balfson Slight smile

    Nop everything is fine. This is so damn strange right now. 

    I did it and in the cli, i see outgoing the packages. On Both Sides. But no incomming package. 

  • 0 in reply to NicoM

    Strange...

    And you watched with espdump instead of tcpdump?  Did you try disable/enable of the IPsec Connection on both sides?  Did you try rebooting both UTMs?

    Cheers - Bob

Reply Children