Overlapping subnet in 2 IPSEC VPN

Question

HI Team, 
 
 I have VPNs to 2 different site, the other end is not using Sophos but Meraki & ASA 
 
 My issue is for first site the remote subnet is 10.0.0.0/8 and for other one - 10.216.30.0/23 & 10.216.33.0/24 
 And it causing overlapping of subnets. packets are not being delivered to 10.216.30.0/23 subnet though sophos should check for longest prefix match 
 Is there a solution to send the traffic for 10.216.30.0/23 & 10.216.33.0/24 to second VPN instead of first one 
 Regards 
 TJ

FormerMember · Answer

Hi Tushar Jain , 
 Thank you for reaching out to the Community! 
 You would have to configure NAT on both sides for the overlapping networks. 
 Check out the following KBA for more info: Sophos UTM: How to tunnel between two UTMs which use the same LAN network range . 
 Thanks,

Overlapping subnet in 2 IPSEC VPN

Top Replies