MPLS routing issue

Problem Description: Unable to ping the corporate office network Via Sophos/Cyberoam firewall from branch network thru MPLS circuit For corp to branch is able to ping, but not able to reach corp network from branch, even adding proper static routes

Cause: This issue is due to the stateful inspection of network traffic in Sophos firewall will blocks the traffic.

Resolution: Have to bypass the stateful inspection of firewall for the particular network in Sophos device via terminal cli. The bypass command is as below for both direction traffic. Eg set advanced-firewall bypass-stateful-firewall-config add sourcenetwork 192.168.10.0 sourcenetmask 255.255.255.0 destnetwork 192.168.1.0 destnetmask 255.255.255.0

set advanced-firewall bypass-stateful-firewall-config add sourcenetwork 192.168.1.0 sourcenetmask 255.255.255.0 destnetwork 192.168.10.0 destnetmask 255.255.255.0