Site to Site VPN using TX570s
I want to pick everyone's brain a bit before getting with support, but here is my situation. Currently I have two properties that are connected via dark fiber configured as trunk ports going into Cisco 4507R at each end. This link might be going away soon, and I have been tasked to get a VPN running between the sites. I have been able to create the VPN and test it in a lab scenario using the documentation from the KBs for SonicOS 7to create the IPSec VPN Site to Site and have IP traffic passing over our two ISPs that will be used (I have them tagged here at my main site). I have moved the 2nd TZ 570 to the other site. The tunnel came right up. I have created multiple sub interfaces for VLANs I need to be passed over this link on both units. However I am unsuccessful at bringing this up. I also have a Sophos Next Gen firewall that handles the VLAN routing, and I have checked it and modified to to where I think it should take care of things but it does not. I guess my main thing is, is there anything special I need to do to make sure VLAN traffic is passing over the VPN? If I can get some kind of verification there, it will allow me to focus on other areas like routing. Thanks in advance!