WebGUI show Site to Site VPN is up but traffic cannot pass through
Options
Zyxel_Kevin
Posts: 981 
Zyxel Employee
Zyxel Employee
in VPN
Checking:
1)You have allow ESP Protocol from WAN to Device. Firewall cannot decrypt packets without allowing ESP rule.
2)You have allow rule for zone "IPsec_VPN" if you use Policy based VPN
(If you customize the VPN zone, please make sure you have the corresponding allowed rules)
3)Check you have correct static route/policy route if you use Route based VPN.
4)Check there is no overlap addresses with the peer subnet
You go to Maintenance -> Packet Flow Explore -> Routing Status to check all routes.
Tagged:
0
Categories
- All Categories
- 442 Beta Program
- 2.9K Nebula
- 219 Nebula Ideas
- 127 Nebula Status and Incidents
- 6.5K Security
- 588 USG FLEX H Series
- 344 Security Ideas
- 1.7K Switch
- 84 Switch Ideas
- 1.4K Wireless
- 52 Wireless Ideas
- 7K Consumer Product
- 298 Service & License
- 477 News and Release
- 91 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.8K FAQ
- 34 Documents
- 87 About Community
- 105 Security Highlight