Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSEC between pfsense and Sophos XG

    Scheduled Pinned Locked Moved IPsec
    1 Posts 1 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nabberuk
      last edited by nabberuk

      I'm beginning to pull my hair out over this. We are a group of schools, each school have a Sophos XG and i'm trying to configure an IPSEC tunnel from each school to our datacentre which is running a pfsense box.

      As it stands only 1 school out of the 13 will stay connected, the others will disconnect at various intervals. I have to log back into the XG and disconnect and then reconnect. When this happens 1 phase 2 connection (on the XG) is still alive, but the others turn red. It still shows multiple connections on pfsense.

      I've look at the key settings and they are identical, strangely enough they aren't on the connection that stays up.

      Any tips on troubleshooting the above issue, or at least where to start?

      Second to this, i'm configuring 2 local (XG end) VLANS to connect to our DC via the IPSEC tunnel. Now if i add another local subnet, it then connects to each and every subnet. this isn't what i would like, i would like local subnet (subnet a) to only be connected to remote subnet a. Hopefully that makes sense

      In the below example, this creates 8 tunnels instead of the 4 wanted.

      b605774c-620e-401a-8bb0-bcd02807d7dc-image.png

      5247934f-28d2-4ab4-b14a-d417144036e6-image.png

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.