Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 2 subscribers
  • Views 1353 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cannot link accross VPN

BangkokBob
I have UTM(1) 9.104 connecting to UTM(2) 8.311 with site to site VPN.  No Intrusion prevention rules in force (for this test) nor anything showing in logs.  Auto Firewall is on at both ends.

Users from site 2 can access web server in site 1.  Users in Site 1 can ping internal destination at site 2, telnet on port 80 to web server at site 2, but cannot display website in browser at site 2.  A separate connection from site 3 to site 2 with similar configuration has no problem.  Traffic from Site 1 to a similar firewall structure in another site has no difficulty.

I am trying to find where the problem is, however apart from testing the above connectivity, I cannot find where there is a problem.  I believe it is at site 1, but can't see anything wrong.

Any guidance appreciated.


This thread was automatically locked due to age.
  • 0
    Any Proxy configuration (Web Protection) at site 1?

    ----------
    Sophos user, admin and reseller.
    Private Setup:

    • XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)
    • UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
  • 0
    I would try the experiment with Live Logs started on both sides with Application Control, Firewall, Intrusion Prevention and Web Filtering.  Does that give you any clues?

    What is new - the UTM 9 in site 1?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    The UTM is in Site 1.

    I've checked the logs and no joy - no entries.  I will escalate this to support.  Thanks for your advice and suggestions.
  • 0
    That's a surprise - I would've expected to see something in the web filtering log.  Have you checked the name resolution?

    Cheers - Bob

    Sorry for any short responses.  Posted from my iPhone.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Cookie Information Banner