IPSec tunnel Incoming data problem

Forum|Forum|13 years ago
December 15, 2012
3 replies
4909 views

hey guys, I recently setup a IPSec tunnel between two offices. They both say they are up but theres only outgoing data on both firewalls, no incoming data which means I cant do things like ping and browse/connect to each office, even though the IPSec tunnel is UP. On each firewall, I created a static route for the other subnet to go out of the IPSec tunnel and I created policies so it allows internal to go out IPSec and IPSec to go to internal. Not sure what I' m missing... can anyone help me please? they are both fortigate 60c. thanks!

FortiRack_Eric

New Member

You don' t setup policy routes for this, just static routes.

jvignacioAuthor

New Member

Sorry I meant static route. Do you know what could be the problem?

FortiRack_Eric

New Member

I assume you' ve checked your active routing table..?

emnoc

New Member

diag debug flow is your friend. But if you have routes and the fwpolicies, than you missed something simple. Are you using 0.0.0.0/0 in your selectors or have something else? Also is NAT enabled? Do you have any other fwpolicies that might be taking effect ( diag debug flow )

jvignacioAuthor

New Member

My mistake guys, I have a policy set for outgoing data through each WAN port to work during 9-5 weekdats :\ Thanks for all the suggestions though. Cheers.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded