Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 1 subscriber
  • Views 5578 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM cant communicate through tunnel

brohall
I have a strange problem where all communication through the IPSec tunnel works but the UTM on one side can not communicate with any machines on the other side of the tunnel. It is like the UTM doesn't know its own routes and tries to talk through the default gateway instead of though the tunnel.

Are there any specific rules/routing that I have to set up to let the UTM communicate with the machines on the other side of the tunnel?


This thread was automatically locked due to age.
Parents
  • 0
    Do you have both the LAN and DMZ networks in respective local and remote networks and not typos in the subnets?
    Usually the UTM is smart enough to route into the respective tunnel when these networks are defined as remote.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

  • 0 in reply to apijnappels
    Do you have both the LAN and DMZ networks in respective local and remote networks and not typos in the subnets?
    Usually the UTM is smart enough to route into the respective tunnel when these networks are defined as remote.


    Yes, so all traffic is going correctly as long as the UTM is not sending the request. 

    The UTM use the wan IP to communicate with the remote network. In the remote/local network I've not included the wan IP of the UTMs. Shall you include it and how do you do it if it is assigned by DHCP?
Reply
  • 0 in reply to apijnappels
    Do you have both the LAN and DMZ networks in respective local and remote networks and not typos in the subnets?
    Usually the UTM is smart enough to route into the respective tunnel when these networks are defined as remote.


    Yes, so all traffic is going correctly as long as the UTM is not sending the request. 

    The UTM use the wan IP to communicate with the remote network. In the remote/local network I've not included the wan IP of the UTMs. Shall you include it and how do you do it if it is assigned by DHCP?
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML