Dear all,
I have a very strange routing? issue. The setup is as follows:
Site A (Home)
Router: Sophos UTM Home virtualised on ESXi 6.0 with dedicated Intel NIC's (Passthrough)
Subnet: 10.0.2.0/24
Gateway: 10.0.2.254 (this is the Sophos UTM Home)
Host A1: 10.0.2.15 (Windows Server 2012 R2 VM)
Host A2: 10.0.2.30 (Ubuntu Server VM)
Host A3: 10.0.2.40 (Xpenology NAS VM)
Site B (Datacenter)
Router: Cisco ASA 5510 Cluster
Subnet: 10.0.16.0/24
Gateway: 10.0.16.254 (interface on Cisco ASA cluster)
Host B1: 10.0.16.23 (Windows Server 2008 R2 VM)
Now here's the problem:
I've created an IPSEC L2L tunnel between Site A & B.
The tunnel comes up correctly and traffic flows from site A to B and vice versa. The problem is, I can't ping to linux based hosts A2 & A3 from site B. I've tried the following:
1. Ping from site B gateway (10.0.16.254) to site A gateway (10.0.2.254) succeeds;
2. Ping from host B1 to another Windows host A1 succeeds. Vise versa also succeeds;
3. Ping from host B1 to A2 & A3 doesn't succeed; Sometimes when rebooting A2 & A3, 1 ping succeeds, then nothing;
4. When I add a extra route on the Xpenology VM (10.0.16.0/24 via 10.0.2.254), the pings succeed, until I reboot the VM... the static route is still available though from the DSM web interface.
5. Ping from A2 via SSH to B1 succeeds for 1 ping and then stops.
6. When I try a different router (Ubiquiti edgemax for instance), I have no problems.
7. I've set all logging levels to debugging, but nothing is denied or dropped.
Hopes somebody can help me out.
Thanks!
This thread was automatically locked due to age.
