Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 3 subscribers
  • Views 5864 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN Site to Site - wrong defult route on branch site

Leo Reo

Hi ,

If you have possibility to help on my case

 

I have a Site to Site VPN with dual ISP between HQ Site and Branch Site

First ISP is Private ISP (Private IP Address) then second ISP is Public ISP (Public IP Address). 

All networks on Branch Site goes to Internet through HQ Site .

My VPN Site to Site is build as Active /Standby. When VPN between HQ Site and Branch is on Private ISP  ,i go from branch site to INTERNET through HQ Site successfully because i have default route  on the side of the HQ site , but my issue is with VPN with Public ISP. When i have VPN with PUBLIC ISP all networks on Branch sites goes to INTERNET localy  through branch site and not from HQ Sites, because my default route  on route table is default gateway of public ip address on the branch site

Can you tell me how to set and configure default route  on branch site that when VPN is on Public ISP  all networks to go on Internet through HQ Sites and not branch site

 

 



This thread was automatically locked due to age.
Parents
  • 0

    Have you tried to include 0.0.0.0/0 (or any or Internet IPv4) inside the tunnel? That way you specifically tell that internet traffic is to be routed through the tunnel.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

  • 0 in reply to apijnappels

    Hi apijnappels ,

     

    Can you tell me how can i set this gateway route. Can i set through GUI or CLI. If i set through GUI ,can you tell me where to set.How is the configurtation please?

     

     

    Thank you

  • 0 in reply to Leo Reo

    You need to simply include this in the tunnel setup at both sides of the tunnel, just like you set the local network portion.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Reply
  • 0 in reply to Leo Reo

    You need to simply include this in the tunnel setup at both sides of the tunnel, just like you set the local network portion.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Children
No Data
Unfiltered HTML