No Gateway added for remote IPSEC endpoint
-
Hello
I have two firewalls in HA pair 2.5.2.
One of them has this issue where IPSEC does not add routes for remote VPN endpoint(s) to routing table.Expected entries look like this.
remotePublicVpnIP1 LocalISPGw1 UGHS em0
remotePublicVpnIP2 LocalISPGw2 UGHS em1Example where 1.1.1.1 and 1.0.0.1 are IPs of remote VPN firewalls
1.1.1.1 3.3.3.3 UGHS em0
1.0.0.1 4.4.4.4 UGHS em0This works on all other firewalls we have, just this one. I compared config to second member that has these entries but could not find what what is causing this.
Any ideas?
Edit: It it could be "Gateway Duplicates" option, but this is not enabled on any of the tunnels.
Many thanks.
-
This was solved by missing GW on WAN interfaces