I have no idea why this VPN is blocking only SOME traffic on a specific port

Hi,

I've got a VPN300. I have no idea how old it is, it's an inherited hardware with my role.

That said, I can see packets coming into the public side with the UI packet sniffer, but no corresponding packet leaving to the right destination.

I'm sorry if I'm a bit unclear. I've been fighting with this for the last 9 hours straight.

So basically, we have a public IP, which is handling our IPSEC tunnel traffic over 4500 and 500 bypassing zyxel and tying into one of our VM's we have behind Zyxel. We've setup the Nat, we even have an identical IPsec server running. This setup even worked til 9 hours and 20 minutes ago.

I'm no zyxel expert, but I'm fairly solid working my around a network and getting something to work, but this setup is leaving me hard pressed. I see nothing in the logs except some ARP about a different server that's also running IPSEC, which made me wonder if there was some sort of ARP cache corruption or something of that nature.

But after digging into the docs and accessing the device over SSH… I have found 2 commands that work. ping and show interface Wan2 proxy-arp status

Every other command gives me a subshell. Would love a regular old terminal, like bash or something. But in the meantime, I could definitely use your guys help figure this out. Any advice?