Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 1269 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Ipsec site-to-site traffic not leaving private interface

raiden1985
Hi,

I am having some issues with a site-to-site connection. The tunnel is up and stable. When I use espdump -n --conn REF_IpsSitTunneBeter -vv I see traffic flowing through the tunnel.

The remote network is 10.1.0.0/22 and the traffic is going to 172.30.14.3 which is on the private interface. I would expect to see this traffic leaving the Private interface. But this is not the case.

I don't see firewall blocks of any kind. Is this remote network being used internally by the UTM ?

Thanks,

With kind regards,

Jeffrey


This thread was automatically locked due to age.
  • 0
    Jeffrey, please show a line or two from espdump indicating that traffic from 10.1.0.0/22 to 172.30.14.3 is flowing through the tunnel.  How are you looking at the Internal interface - with tcpdump?  The only things "reserved" for use by the UTM are 1.2.3.4 and VLAN 0.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Hi Bob,

    Thanks for your response. What I did this morning is completely delete the current tunnel and remote gateway configs. I recreated with the same settings and everything is working.

    I really don't get it. But I am happy its working now.

    Thanks,

    Jeffrey
  • 0 in reply to raiden1985
    same problem here, cant figure it out. worked yesterday till around 3pm EST
Unfiltered HTML