Hi there,
we got on a site a new Sophos SG 125 connected with our SG430 via IPSEC.
Connection is fine, all defined routes are established. PING is possible.
It exists a Masq-entry and also a FW Rule that allows any traffic between these two sites.
DNS, tracert is fine. Evertyhing seems to be ok. But it is nothing else possible, than pinging the other site (doesn't matter what device).
No rdp, webservices and similar things are working.
What we tried: We disabled IPS, ATP. Created ANY>ANY>ANY Rule. Looked at the fw-livelogs on both machines. There was no entry to find, that was blocked.
Pretty strange.
Maybe this could be the problem?!:
The time, before we had the SG 125 on the site, we used a bintec ipsec between this two sites. In our mainoffice there is still the bintec router online, for the other branch offices, which have bintec gw-router.
Our settings:
Subnet Mainoffice (mo): 10.43.1.0/24
Subnet branchoffice (bo): 10.44.1.0/24
IP SG 430 (mo): 10.43.1.1
IP bintec 1200 (mo): 10.43.1.2
IP SG 125 (bo): 10.44.1.1
IP bintec 1200 (bo): 10.44.1.1
We disabled and created routes:
On the bintec in MO we defined a route: 10.44.1.0/24 > 10.43.1.1
On the bintec in MO we deleted the route: 10.44.1.0/24 > 10.43.1.2
On SG430 in MO we disabled static route: 10.44.1.0/24 > 10.43.1.2
But as i said, the connection and ping between the two sites is fine. So the routing is ok.
I got no idea and have installed the bintec router back, so the branchoffice isn't isolated.
Many Thanks i advance,
Greets,
Christian
PS: One other thing i did was wiresharking, but the only thing i saw was [TCP Retransmission] and then [RST ACK] when i tried to open a rdp session on the other site.
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
