Why no traffic pass through the tunnel as it's established?

Zyxel_James
Posts: 667
Zyxel Employee





in VPN
Question: Why no traffic pass through the tunnel as it's established?
Answer:
- 1.Make sure to allow ESP from WAN to Device. Without allowing ESP, the firewall cannot unencrypt encapsulated packets.
- Check Policy Route/Static Route. Check if any policy routes or static routes that could interfere with routing traffic into the VPN tunnel. These routes may divert the traffic elsewhere, preventing it from entering the VPN tunnel.
- Make sure there is no Subnet Overlap
With overlapping subnets, VPN traffic might be unintentionally routed internally instead of through the VPN tunnel. Ensure that the VPN traffic is correctly directed towards the tunnel to avoid such issues.
You can go to Maintenance -> Packet Flow Explore -> Routing Status to check all routes.
Tagged:
0
Categories
- All Categories
- 417 Beta Program
- 2.5K Nebula
- 160 Nebula Ideas
- 108 Nebula Status and Incidents
- 5.9K Security
- 331 USG FLEX H Series
- 286 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 259 Service & License
- 402 News and Release
- 86 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 80 Security Highlight