Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 1 subscriber
  • Views 8831 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

site to site and remote ipsec vpn

Fizzer
Hi Folks,
I have a site to site VPN set up (working fine) using preshared keys.

I'd like to create a new ipsec remote user vpn also using preshared keys however I get this warning when I try to do so:

Site-to-site VPN → IPsec → Connections:
Preshared key conflicts with connection 'siteA'. Continuing will disable that connection.

To me this implies that I can only have 1 ipsec connection (of either type) using preshared keys. If that is the case, should switch one or the other to using certs?


This thread was automatically locked due to age.
  • 0
    OK, I found a bit more info and got it all working:
    if the site to site vpn is set to receive only then all PSKs must match. setting the remote user PSK to the same as the site to site PSK resolved the issue.
  • 0
    This was the old solution, Fizzer, but since V7.5 (I think), there's been a checkbox for 'Enable probing of preshared keys' on the 'Advanced' tab of IPsec.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML