Site to Site tunnel inactive

through the CLI i disabled a tunnel for troubleshooting using the following commands.

config sys int edit Macon-Temp2 set status down next end When finished i did the same but with "set status up".

nothing else was done, the tunnel still show inactive

SuperUser

If you don't have DPD enabled, there might needs to be some user traffic to bring up the tunnel.

New Member

Hello, Broow,

You may try this command:

execute vpn ipsec tunnel up <phase2> <phase1> <serial>

If doesn't work, you can debug the ike application to troubleshoot the issue:

diagnose vpn ike log filter name <phase1-name>

diagnose debug application ike -1

diagnose debug enable

Regards,

Mauro.

Sign up