WebGUI show Site to Site VPN is up but traffic cannot pass through
Options
Zyxel_Kevin
Posts: 975 
Zyxel Employee
Zyxel Employee
in VPN
Checking:
1)You have allow ESP Protocol from WAN to Device. Firewall cannot decrypt packets without allowing ESP rule.
2)You have allow rule for zone "IPsec_VPN" if you use Policy based VPN
(If you customize the VPN zone, please make sure you have the corresponding allowed rules)
3)Check you have correct static route/policy route if you use Route based VPN.
4)Check there is no overlap addresses with the peer subnet
You go to Maintenance -> Packet Flow Explore -> Routing Status to check all routes.
Tagged:
0
Categories
- All Categories
- 440 Beta Program
- 2.9K Nebula
- 208 Nebula Ideas
- 127 Nebula Status and Incidents
- 6.4K Security
- 528 USG FLEX H Series
- 331 Security Ideas
- 1.7K Switch
- 84 Switch Ideas
- 1.3K Wireless
- 50 Wireless Ideas
- 6.9K Consumer Product
- 292 Service & License
- 462 News and Release
- 90 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.6K FAQ
- 34 Documents
- 86 About Community
- 99 Security Highlight