Meraki Support don´t answer 😞
The remote site is Sophos. According to the event log, the connection is established, the status dot is green, but unfortunately no data can be transferred. A ping also leads to nothing. The receiving station sees that the connection is active, but cannot see any errors. The automatic entry in the routing table designates the public IP as the next hop - this is wrong. The next hop must be the tunnel(device) or the IPsecPeer!
Have you configured the local networks to participate on the VPN?
Yes. The local networks have VPN mode enabled.
Can you show your configuration, the rounting table, non-meraki peers and exported subnets?
The Screenshots...
Looks good, do you have Sophos access? Did you check if there are any rules in Sophos that could be blocking access?
The next hop is correct, It's how the things work on Meraki. Probably there are some configuration incorrect on Sophos.
No, no access to sophos site but the guy there says "no blocked here". He means that the next hop in the meraki routing table is the public IP - and thats not correct!