I wish to ping remote nodes on separate private networks, I'll call the networks game01 and family01and the remote nodes Rnode01, Rnode02. I want to ping them from my local network Home01 with local node node01. I have FW01 protecting Home01. FW02 is protecting Family01 and Game01.
FW01 is Sophos 9.1x and has a client Site-to-Site SSL connection to FW02, also 9.1x. FW02 is configured as the server for the ssl tunnel. Family01 and Game01 are listed as local networks in the server ssl connection.
Breakout:
Home01 - 10.0.0.0/26
Family01 - 10.1.1.0/26
Game01 - 10.10.1.0/28
Node01 - 10.0.0.6
Rnode01 - 10.1.1.7
Rnode02 - 10.10.1.8
From Node01 I can ping Rnode01 and the interfaces on FW02 but I cannot ping Rnode02.
From Rnode01 I also cannot ping Rnode02. Rnode01 can ping all FW02's interfaces.
From FW02's Tools page, I can ping Rnode01 and Rnode02.
I suspect this is a routing issue but I have not successfully created one that works.
For the purpose of troubleshooting I put on FW02 an allow any, any, any as the first rule. The allow ping on ICMP tab are turned on.
For the curious, game01 is where my son's mindcraft and FPS servers sit. I don't want them messing with the family mail and web servers on family01. These are on an ESXi server in one country while home01 is where I am currently stationed in another country.
Mark
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
