Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 1 subscriber
  • Views 5101 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Site to Site VPN with 2 ASG

wingman
Hi All

I am trying to setup a site to site ipsec with 2 ASG

ASG_1
=======
Version 8.201
external Ip is 87.xx.xx.xx (public)

ASG_2
=======
Version 8.103
external IP is 192.168.0.8 (as ISP router is Nat'ing)

Topology looks like

ASG_1(software appliance) ----modem ======ipsec======ISProuter-----ASG_2(virtual appliance) on a windows 2011 home server 

I have attached the logs for both ASG. We both use RSA and VPN ID (hostname) so that we won't have the issue as described here

However, ASG_2 has an external Gateway set as 192.168.0.8 (because of the ISP router) and therefore we are unable to connect

Troubleshooting steps
################
1)We have forwarded ports from ISP router to ASG_2 (500 AND 4500)
2)Both ASG can ping each other

**pending logs from ASG_2

Thanks


This thread was automatically locked due to age.
Parents
  • 0
    I have turned off all my remote vpn settings and not sure where that installed route is. According to the log I am getting "cannot route -- route already in use for "X_REF_IpsSitAntonis_1" . 


    ****:/root # cc X_REF_IpsSitAntonis_1
    X_REF_IpsSitAntonis_1 returned ''
    [
              'FUNCTION_UNKNOWN',
              {
                'attrs' => [
                             'method'
                           ],
                'fatal' => 1,
                'format' => 'No public function \'%s\' is provided by this Confd.',
                'method' => 'X_REF_IpsSitAntonis_1',
                'msgtype' => 'FUNCTION_UNKNOWN',
                'name' => 'No public function \'X_REF_IpsSitAntonis_1\' is provided                                               by this Confd.',
                'never_hide' => 0
              }
            ]

    Any suggestions?
Reply
  • 0
    I have turned off all my remote vpn settings and not sure where that installed route is. According to the log I am getting "cannot route -- route already in use for "X_REF_IpsSitAntonis_1" . 


    ****:/root # cc X_REF_IpsSitAntonis_1
    X_REF_IpsSitAntonis_1 returned ''
    [
              'FUNCTION_UNKNOWN',
              {
                'attrs' => [
                             'method'
                           ],
                'fatal' => 1,
                'format' => 'No public function \'%s\' is provided by this Confd.',
                'method' => 'X_REF_IpsSitAntonis_1',
                'msgtype' => 'FUNCTION_UNKNOWN',
                'name' => 'No public function \'X_REF_IpsSitAntonis_1\' is provided                                               by this Confd.',
                'never_hide' => 0
              }
            ]

    Any suggestions?
Children
No Data