Phase 1 and 2 connecting but not passing traffic from site A and B. Yet i can create a third tunnel to both sites from my end using the exact same settings and it works.
-
Yesterday at random a site to site tunnel stop working even though it shows connected. This was originally a Cisco ASA at Stie A and a Sophos at Site B (cloud server hosting company). The tunnels were up.
So after some troubleshooting i decided to replace the Cisco with Pfsense loaded on a system until i could put in a order for a proper Netgate Appliance - As least allowing them to get back up and function till then. Simply export and import the config later.
Well same thing occurred - Sophos support got involved and was having issues determining why port 500 and 4500 were not passing traffic.
So the vendor at Site B spun up a Pfsense instance and again the same issue as before.
I created a tunnel to both locations using the same settings with a different preshare key from my network and i am able to pass traffic back and forth with Site A and Site B.
Vendor has switched the Public IP's on the cloud servers over to another block - same thing again. The tunnel establishes but does not pass any traffic. I've tried a number of different tunnel configuration.
Both side can ping 1.1.1.1 and other locations with internet access from CMD and console.
Here are a couple screen shots of the settings and IPSEC logs!
-
Forgot to mention Site A uses Cox Cable and Site B uses Comcast.
-
This post is deleted!