I have setup a Site to Site SSL VPN between our 2 UTM's at 2 Sites, the link establishes but when i try to browse a web server on the other site I just get a sophos timed out error page in chrome. Should it have automatically set up the routing tables and created Firewall rules as i ticked the box to do that? Is there anything else I have to do myself to get traffic flowing across the Site to Site VPN?
The auto rules look OK but from looking at the live logs it does appear to be dropping traffic, The rules it automatically created were for
see image for actual screen shot : -
UTM 1 main
UTM 2 branch
when i look at the logs on the receiving site UTM the request is going to the right IP of the WWW server but the source is an IP from my SSL VPN POOL and it drops those, should it have created rules for traffic from the SSL VPN POOL addresses used by each site aswell? Also where do I find the actual Virtual IP used by each Sites UTM on the StS SSL VPN? when i look at the Site to Site page on the web admin it only shows me the Ext IP's used by each site to connect to each other and the local network ranges underneath, I dont see the IP they use from the VPN pool?
So anyone have any ideas why im still not able to communicate to hosts on the other sites network?
Should I use a RED tunnel instead, its just the guide article from sophos has a lot more steps to setup inc setting up virtual interfaces then setting up static routes and also NAT rules for each UTM. Shouldn't there be more steps for the site to site VPN rather than setting up the profiles on each site?
If anyone knows where I might find a decent guide article on setting up a Site to Site SSL VPN or a guide you know works, I'd really appreciate it as i can make sure I set mine up correctly. I can only find RED tunnel articles in sophos Kb.
Thanks
JK
PS FYI i have googled this!
This thread was automatically locked due to age.
