Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
IPSEC site to site with Sophos XG 310 up and down
« previous
next »
Print
Pages: [
1
]
Author
Topic: IPSEC site to site with Sophos XG 310 up and down (Read 2243 times)
fabiodanzetta
Newbie
Posts: 26
Karma: 0
IPSEC site to site with Sophos XG 310 up and down
«
on:
August 26, 2020, 11:26:57 am »
Hi everyone, I updated to version 20.7.1 and after this update the IPSEC tunnel that I had set up with the Sophos XG 310 started up and down randomly, sometimes after a few seconds or minutes from the connection established and in other cases even after one or more hours, all without a logical temporal thread. I also removed and recreated the configurations from scratch on both opnsense and Sophos but nothing. I also tried to change the hash algorithm and disable the rekey and nat traversal but the problem remains. Thank you all.
Logged
Cerberus
Jr. Member
Posts: 61
Karma: 4
Re: IPSEC site to site with Sophos XG 310 up and down
«
Reply #1 on:
August 26, 2020, 04:58:44 pm »
Since 20.07 i have many problems with ipsec. The connection between OPNsense and Sophos UTM (IKEv1) get lost over a few hours, it is set to autoconnect but it never reconnects and i have to press the reconnect button on the OPNsense ipsec status page.
Another issue is between two OPNsense VMs (IKEv2). IPSEC works for around 2-3 Minutes and then the connection is dead, the tunnel itself is still up but no more traffic is going trough, i had to disconnect/connect the ipsec connection to make it work again for a few minutes.
All this issues started with 20.07
«
Last Edit: August 26, 2020, 05:00:48 pm by Cerberus
»
Logged
sorano
Full Member
Posts: 153
Karma: 21
Re: IPSEC site to site with Sophos XG 310 up and down
«
Reply #2 on:
August 26, 2020, 05:18:47 pm »
Just wanted to add that I've been running IPSEC between a Cisco RV-series & OPNsense since 20.1 and it's still running flawless after 20.7 upgrade.
Logged
2x 23.7 VMs & CARP, 4x 2.1GHz, 8GB
Cisco L3 switch, ESXi, VDS, vmxnet3
DoT, Chrony, HAProxy + NAXSI, Suricata
VPN: IPSec, OpenVPN, Wireguard
MultiWAN: Fiber 500/500Mbit dual stack + 4G failover
--
Available for private support.
Did my answer help you? Feel free to click [applaud] to the left
fabiodanzetta
Newbie
Posts: 26
Karma: 0
Re: IPSEC site to site with Sophos XG 310 up and down
«
Reply #3 on:
August 28, 2020, 03:22:14 pm »
Thank you for your answers.
I've done a lot of trials and changed configurations, but I couldn't solve the problem, and I sincerely don't know more than more attempts.
Thanks again.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
IPSEC site to site with Sophos XG 310 up and down