0

I have a IPSEC tunnel configured as follows.

Site A (Sophos XG) 192.168.40.0/22 to Site B (pfsense) 10.1.1.0/22

At site B i have a Zabbix instance installed at 10.3.1.2 on a separate VLAN. I want this Zabbix instance to access the XG (over the tunnel at 192.168.40.1) at Site A via SNMP.

I have altered the firewall at the Sophos XG end (Site A) but i need to configure the pfsense.

Do i need to create a NAT, Static Route or a Mapping?

I'm a little unsure on the next steps, can anyone offer any guidance?

Nathan
  • 165
  • 8
  • Can you change the traffic selectors (IPsec policies) of the negotiated tunnel so that they include `10.3.1.2`? Or negotiate a second tunnel for it? If not and since `10.1.1.0/22` does not include it, you'd have to e.g. use NAT to hide that IP behind one in that subnet. – ecdsa Jan 16 '23 at 13:42

0 Answers0