ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall

ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall

ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall
ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall
2024-09-30 07:35:29 - last edited 2024-10-04 04:10:45
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version: 2.2.6

Dear Support,

 

Kindly assist us in established a successful Site to Site VPN connection via Tplink ER605 (Remote Site Router) to Sophos XGS Firewall (Head Office), we have tried all knowledge base available but have challenges in connecting this two routers.

 

Further, we have noticed that most of the vpn option which were available before joining to controller are disappeared and very fewer vpn option available.

 

Regards

Sayeed

  0      
  0      
#1
Options
2 Accepted Solutions
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall-Solution
2024-09-30 14:13:45 - last edited 2024-10-04 04:10:45
Recommended Solution
  0  
  0  
#6
Options
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall-Solution
Thursday - last edited Friday

  @LiamYves 

 

Kindly follow the wizard setup on Sophos Firewall and use IKEV2 profile with AES256 - SHA2 512 encryption and use tunnel mode. Try this work fine for me

Recommended Solution
  1  
  1  
#18
Options
19 Reply
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall
2024-09-30 08:07:29

  @Svamitva_IT 

 

what are you missing from vpn configuration in controller mode that you have in stand alone?

 

some screenshots would have helped a bit

  0  
  0  
#2
Options
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall
2024-09-30 11:55:00

  @Svamitva_IT Please find screen shot as requested!

Svamitva_IT wrote

Dear Support,

 

Kindly assist us in established a successful Site to Site VPN connection via Tplink ER605 (Remote Site Router) to Sophos XGS Firewall (Head Office), we have tried all knowledge base available but have challenges in connecting this two routers.

 

Further, we have noticed that most of the vpn option which were available before joining to controller are disappeared and very fewer vpn option available.

 

Regards

Sayeed

 

File:
VPN.docxDownload
  0  
  0  
#3
Options
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall
2024-09-30 12:03:32

  @Svamitva_IT 

 

those screenshots didn't say much, i was wondering what you are missing when configuring the vpn on the omada controller.
you have to press advanced in vpn config for more options.

 

 

  0  
  0  
#4
Options
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall
2024-09-30 12:16:50

  @MR.S, I are uable to configure site to site vpn with sophos, I  can find the tunnel config 

 

  0  
  0  
#5
Options
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall-Solution
2024-09-30 14:13:45 - last edited 2024-10-04 04:10:45
Recommended Solution
  0  
  0  
#6
Options
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall
2024-10-07 12:38:46

  @MR.S 

 

Hi, we have managed to successfully establish the Site to Site Ipsec Tunnel, but unable to ping host and remote network. Any advise on how to diagnose this further. I have attached the vpn status for your info.

File:
vpn status.pngDownload
  0  
  0  
#7
Options
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall
2024-10-07 13:18:29

  @Svamitva_IT 

 

Try ping your remote gateway lan ip

  0  
  0  
#8
Options
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall
2024-10-07 13:36:25

  @MR.S 

 

Its not pinging - "request time out"

  0  
  0  
#9
Options
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall
2024-10-07 13:39:23

  @Svamitva_IT 

 

Du you have some router ACL configured?

 

  0  
  0  
#10
Options
Re:ER605 Router unable to connect to IPSEC Site to Site VPN with Sophos xgs firewall
2024-10-07 13:43:50

  @MR.S Nothing

  0  
  0  
#11
Options