Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 11 replies
  • Subscribers 2 subscribers
  • Views 30324 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

[SG330 v9.315.12] - Outgoing S2S-IPSEC with additional adress

trialrider

Hi,

I want to use outgoing S2S-IPSEC on an additional address on my external interface beside existing outgoing S2S-IPSEC's on external address of external interface. Using a separate IP as  VPN ID doesn't work. What can I do to get this working? Or can I only use one way (ext. address or add. address) for outgoing S2S-IPSEC?
--
King redards, Steffen

(Hoping to understand the new board)



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to /dev/nul

    Hi, yes I tried. But I couldn't see any difference. My SNAT looks like:

    Traffic selector: External (add.) => Any => Gateway IP
    Source translation: External (add. addr.)
    Auto FW rule: no
    Rule applies to IPsec: yes
    Initial packets: yes

    Log says no main mode and established connection via quick mode.

    My gateway looks like:

    GW type: Initiate connection

    GW: Gateway IP

    Auth: PSK

    VPN ID type: IP address

    VPN ID (optional): <blank>

    Remote network: internal network on VPN side

    No advanced options

    My connection is set like this:

    Remote GW: like defined above

    Local interface: External

    Policy: defined under Policies

    Loc. networks: my lan object

    No other options

Unfiltered HTML