@khalilbouzaiene1 I would suggest you share below details from FW-A and
FW-B show firewall policy show system interface show router static show
vpn ipsec phase1-interface show vpn ipsec phase2-interface Regards
Hi @khalilbouzaiene1 NAT is not required until you have a specific
requirement like overlap subnet at each side or hide your private IP
from remote end etc. Why don't you share your configuration from both
devices if this is a only a labsetup so we c...
Hi @khalilbouzaiene1 , The session finds a route because there is a
route available, but the gateway for that route is incorrect as it is
pointing to your Physical interface next-hop. You can remove the Gateway
IP from that route and test it and I th...
@Satory From the details you have shared in the Forum, it almost looks
like you have a proper configuration as we indeed see the traffic
exiting the remote firewall through the tunnel interface, but
unfortunately on the other side the traffic is not ...
@khalilbouzaiene1 For your Tunnel routes, you don't need to define a
Gateway IP which you defined incorrectly as I see from one of the
screenshots you shared earlier. The route just needs the tunnel
interface name for it to forward the traffic to tun...