Hello
I'm fighting with this problem for few days.
I have two USG 1900 and trying to get IPSEC site-to-site to work.
Firmware 4.13 (AAPL.1)
Tunnel is connected(status and logs shows that) but no traffic passed through
Logs shows errors like below (also for TCP and UDP connections)
SPI: 0x0 (0) SEQ: 0x0 (0) No rule found, Dropping ICMP packet *source *destination IPSEC
Manual don't say that i need add policy routes to access other network but anyways i tried adding routes with no success.
Also tried restore device settings to factory and create tunnel using creator - same result: SPI: 0x0 (0) SEQ: 0x0 (0) No rule found, Dropping ...
Tried also L2TP over IPSEC and i CAN access internet but CAN'T ACCESS internal network
With L2tp also get SPI: 0x0 (0) SEQ: 0x0 (0) error
Tunnels don't work either with nat-t or without it.
All ports are open and don't get logs blocking any of ipsec belonging protocols.
I tried other device USG100 and tunnel (at least L2tp) work to internet/local network without problems.
Can't see any info in logs that can lead me to solve my problem.
Even debug from cli ...
Any ideas?
Regards
↧