VPN between ZyWall 110 and USG 20 is CONNECTED but can't ping

Hello
I made an IPSEC VPN between a USG110 and USG20, the tunnel connects but the traffic does not pass, if I ping from the firewall console USG20> UG110 I do not receive the same response from USG20> UG110. I have also disabled policy controllers. The strange thing is that I did the configuration months ago and everything was working regularly suddenly it doesn't work anymore. What can I do thanks for the support

All Replies

  • PeterUK
    PeterUK Posts: 2,699  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer

    So its a site to site VPN?

    Are the local and remote policy correct?

    You may need a routing rule for the destination to go down the next hop tunnel


  • MJStar
    MJStar Posts: 34  Freshman Member
    First Anniversary 10 Comments Friend Collector First Answer
    While you ping USG20 to USG110 site and no response from the peer site, are there any logs can be seen on log page(Monitor ->Log)?  Maybe it's a clue.
  • Type your don't just log in there
  • Zyxel_Jeff
    Zyxel_Jeff Posts: 1,059  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer

    Can you provide those two sites' device config files to us via private message?
    We would like to build a test in our LAB environment to reproduce it.

Security Highlight