WebGUI show Site to Site VPN is up but traffic cannot pass through
Options
Zyxel_Kevin
Posts: 795 
Zyxel Employee
Zyxel Employee
in VPN
Checking:
1)You have allow ESP Protocol from WAN to Device. Firewall cannot decrypt packets without allowing ESP rule.
2)You have allow rule for zone "IPsec_VPN" if you use Policy based VPN
(If you customize the VPN zone, please make sure you have the corresponding allowed rules)
3)Check you have correct static route/policy route if you use Route based VPN.
4)Check there is no overlap addresses with the peer subnet
You go to Maintenance -> Packet Flow Explore -> Routing Status to check all routes.
Tagged:
0
Categories
- All Categories
- 398 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 83 Nebula Status and Incidents
- 5.2K Security
- 99 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 923 WirelessLAN
- 35 WLAN Ideas
- 5.9K Consumer Product
- 212 Service & License
- 337 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 2.1K FAQ
- 1K Nebula FAQ
- 445 Security FAQ
- 238 Switch FAQ
- 213 WirelessLAN FAQ
- 47 Consumer Product FAQ
- 142 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 62 Security Highlight