Gateway confusion between two IPSec Gateways
All Replies
-
Up.
Tunnel survived to a firewall (spoke) reboot, however still have to understand if it will work after a public ip change.0 -
Any news on this topic?
Seemingly I have the same issue.
- Win10 IKEv2 Cert tries to connect – to an IP that will just answer to this one gateway. On the 2nd WAN.
- Cert is signed on the IP (static)
- Gateway is listening to the IP and LocalID is set to the IP
- Setting a PeerID on Windows is not supported as far as I know?
- I get a proposal mismatch, since it seems to try ANY of the gateways, but NOT the one I am targeting.
Why would Gateway X answer a call to Gateway Y on a totally different WAN, IP and LocalID?
I need to have Apple, site-2-site (both working well) and now also Win10/11 running – PCs being the minority here.
0 -
Yeah seemingly there is more to my problems and the gateway confusion is just one symptom.
But I am telling it as it was: Connect to WAN1 - get a response/error from a gateway on WAN2.
0 -
I changed the negotiation parameters for the specific site-to-site tunnel. Then the IKEv1 tunnel from client worked without issues.
0
Guru Member
Master Member
Categories
- All Categories
- 415 Beta Program
- 2.5K Nebula
- 152 Nebula Ideas
- 101 Nebula Status and Incidents
- 5.8K Security
- 296 USG FLEX H Series
- 281 Security Ideas
- 1.5K Switch
- 77 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.5K Consumer Product
- 254 Service & License
- 396 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.6K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 87 About Community
- 76 Security Highlight
