Gateway confusion between two IPSec Gateways
All Replies
-
Up.
Tunnel survived to a firewall (spoke) reboot, however still have to understand if it will work after a public ip change.0 -
Any news on this topic?
Seemingly I have the same issue.
- Win10 IKEv2 Cert tries to connect – to an IP that will just answer to this one gateway. On the 2nd WAN.
- Cert is signed on the IP (static)
- Gateway is listening to the IP and LocalID is set to the IP
- Setting a PeerID on Windows is not supported as far as I know?
- I get a proposal mismatch, since it seems to try ANY of the gateways, but NOT the one I am targeting.
Why would Gateway X answer a call to Gateway Y on a totally different WAN, IP and LocalID?
I need to have Apple, site-2-site (both working well) and now also Win10/11 running – PCs being the minority here.
0 -
Yeah seemingly there is more to my problems and the gateway confusion is just one symptom.
But I am telling it as it was: Connect to WAN1 - get a response/error from a gateway on WAN2.
0 -
I changed the negotiation parameters for the specific site-to-site tunnel. Then the IKEv1 tunnel from client worked without issues.
0
Guru Member
Master Member
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 165 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 364 USG FLEX H Series
- 292 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 262 Service & License
- 407 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight
