Why no traffic pass through the tunnel as it's established?
Options

Zyxel_James
Posts: 788
Zyxel Employee





in VPN
Question: Why no traffic pass through the tunnel as it's established?
Answer:
- 1.Make sure to allow ESP from WAN to Device. Without allowing ESP, the firewall cannot unencrypt encapsulated packets.
- Check Policy Route/Static Route. Check if any policy routes or static routes that could interfere with routing traffic into the VPN tunnel. These routes may divert the traffic elsewhere, preventing it from entering the VPN tunnel.
- Make sure there is no Subnet Overlap
With overlapping subnets, VPN traffic might be unintentionally routed internally instead of through the VPN tunnel. Ensure that the VPN traffic is correctly directed towards the tunnel to avoid such issues.
You can go to Maintenance -> Packet Flow Explore -> Routing Status to check all routes.
Tagged:
1
Categories
- All Categories
- 435 Beta Program
- 2.7K Nebula
- 183 Nebula Ideas
- 120 Nebula Status and Incidents
- 6.2K Security
- 438 USG FLEX H Series
- 299 Security Ideas
- 1.6K Switch
- 80 Switch Ideas
- 1.2K Wireless
- 44 Wireless Ideas
- 6.7K Consumer Product
- 276 Service & License
- 433 News and Release
- 88 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 84 About Community
- 91 Security Highlight