I have 2 offices, Site A is Sophos and Site B is Fortigate. I have
established Site-To-Site VPN for the two sites. The tunnel between the
two sites is UP, but the Tunnel Interface IP cannot ping each other and
the two sites cannot ping each other. Th...
Checked that the TTL and encryption settings for Phase 1 and Phase 2
match between the two.I captured the packet on Fortigate earlier, but I
did not receive the ESP packet. I am checking the source of the problem
in detail.
Hi @AEK I conducted troubleshooting based on this
document(https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-IPSec-VPN-with-Sophos-is-not-working/ta-p/339424),
and it seems that the IKE Phase1 & Phase2 processes are smooth and there
are...
In Fortigate, I have set up the Firewall Policy as follows, in which I
include Interfaces using Zone.Internal-LAN is server ip subnet
interface, internal-S2S-OF is IPSec tunnel interface. Sophos & Fortigate
pretty much open up bidirectional firewall ...
Hi @dbhavsar I have added the relevant IP address to the Firewall. I
think it should be allowed, and the Phase 2 status is up. Is there any
recommended way to check it?
