WebGUI show Site to Site VPN is up but traffic cannot pass through
Options
Zyxel_Kevin
Posts: 981 
Zyxel Employee
Zyxel Employee
in VPN
Checking:
1)You have allow ESP Protocol from WAN to Device. Firewall cannot decrypt packets without allowing ESP rule.
2)You have allow rule for zone "IPsec_VPN" if you use Policy based VPN
(If you customize the VPN zone, please make sure you have the corresponding allowed rules)
3)Check you have correct static route/policy route if you use Route based VPN.
4)Check there is no overlap addresses with the peer subnet
You go to Maintenance -> Packet Flow Explore -> Routing Status to check all routes.
Tagged:
0
Categories
- All Categories
- 442 Beta Program
- 3K Nebula
- 223 Nebula Ideas
- 129 Nebula Status and Incidents
- 6.6K Security
- 637 USG FLEX H Series
- 357 Security Ideas
- 1.8K Switch
- 86 Switch Ideas
- 1.4K Wireless
- 54 Wireless Ideas
- 7K Consumer Product
- 301 Service & License
- 494 News and Release
- 93 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.8K FAQ
- 34 Documents
- 88 About Community
- 109 Security Highlight