Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 2 subscribers
  • Views 2480 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Problem with site-to-site IPSEC PSK

riky_bo
HI i have this situation:
ASG 7.402
Internal Address 192.168.0.x
External Address 192.168.1.x
An ADSL Router that have assigned the pubblic IP Address, so the public address is not on Astaro 
I must reach 4 remote subnet (172.24.x.x 172.26.x.x ecc) with an IPSEC site-to-site VPN


I have done a site to site IPSEC PSK with another lan that have a StoneGate. I have to do an SNAT because the remote network want that my network, for them, is 172.21.38.x

the tunnel seems to go up (all the light are green), but i cannot ping or use anything in the remote network.

What i am wrong?

PS: i have add an address to my internal (172.21.38.1) and i have configure a SNAT in this mode: internal network-->any-->remote network   SNAT-->additional address-->blank


This thread was automatically locked due to age.
Parents
  • 0
    It appears that your 'IPsec Connection' definition needs "Internal (Network)" in the 'Local networks' box.  Do you have 'Strict routing' and 'Auto packet filter' selected?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    It appears that your 'IPsec Connection' definition needs "Internal (Network)" in the 'Local networks' box.  Do you have 'Strict routing' and 'Auto packet filter' selected?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
Cookie Information Banner