WebGUI show Site to Site VPN is up but traffic cannot pass through
Zyxel_Kevin
Posts: 958 
Zyxel Employee
Zyxel Employee
in VPN
Checking:
1)You have allow ESP Protocol from WAN to Device. Firewall cannot decrypt packets without allowing ESP rule.
2)You have allow rule for zone "IPsec_VPN" if you use Policy based VPN
(If you customize the VPN zone, please make sure you have the corresponding allowed rules)
3)Check you have correct static route/policy route if you use Route based VPN.
4)Check there is no overlap addresses with the peer subnet
You go to Maintenance -> Packet Flow Explore -> Routing Status to check all routes.
Tagged:
0
Categories
- All Categories
- 438 Beta Program
- 2.7K Nebula
- 188 Nebula Ideas
- 121 Nebula Status and Incidents
- 6.2K Security
- 455 USG FLEX H Series
- 303 Security Ideas
- 1.6K Switch
- 81 Switch Ideas
- 1.3K Wireless
- 44 Wireless Ideas
- 6.8K Consumer Product
- 279 Service & License
- 436 News and Release
- 88 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 91 Security Highlight