IPSEC site to site with Sophos XG 310 up and down

fabiodanzetta · August 26, 2020, 11:26:57 AM

Hi everyone, I updated to version 20.7.1 and after this update the IPSEC tunnel that I had set up with the Sophos XG 310 started up and down randomly, sometimes after a few seconds or minutes from the connection established and in other cases even after one or more hours, all without a logical temporal thread. I also removed and recreated the configurations from scratch on both opnsense and Sophos but nothing. I also tried to change the hash algorithm and disable the rekey and nat traversal but the problem remains. Thank you all.

Cerberus · August 26, 2020, 04:58:44 PM

Since 20.07 i have many problems with ipsec. The connection between OPNsense and Sophos UTM (IKEv1) get lost over a few hours, it is set to autoconnect but it never reconnects and i have to press the reconnect button on the OPNsense ipsec status page.

Another issue is between two OPNsense VMs (IKEv2). IPSEC works for around 2-3 Minutes and then the connection is dead, the tunnel itself is still up but no more traffic is going trough, i had to disconnect/connect the ipsec connection to make it work again for a few minutes.

All this issues started with 20.07 :(

sorano · August 26, 2020, 05:18:47 PM

Just wanted to add that I've been running IPSEC between a Cisco RV-series & OPNsense since 20.1 and it's still running flawless after 20.7 upgrade.

fabiodanzetta · August 28, 2020, 03:22:14 PM

Thank you for your answers.
I've done a lot of trials and changed configurations, but I couldn't solve the problem, and I sincerely don't know more than more attempts.

Thanks again.

IPSEC site to site with Sophos XG 310 up and down

fabiodanzetta

August 26, 2020, 11:26:57 AM

Cerberus

August 26, 2020, 04:58:44 PM #1 Last Edit: August 26, 2020, 05:00:48 PM by Cerberus

sorano

August 26, 2020, 05:18:47 PM #2

fabiodanzetta

August 28, 2020, 03:22:14 PM #3