No Gateway added for remote IPSEC endpoint
I have two firewalls in HA pair 2.5.2.
One of them has this issue where IPSEC does not add routes for remote VPN endpoint(s) to routing table.
Expected entries look like this.
remotePublicVpnIP1 LocalISPGw1 UGHS em0
remotePublicVpnIP2 LocalISPGw2 UGHS em1
Example where 22.214.171.124 and 126.96.36.199 are IPs of remote VPN firewalls
188.8.131.52 184.108.40.206 UGHS em0
220.127.116.11 18.104.22.168 UGHS em0
This works on all other firewalls we have, just this one. I compared config to second member that has these entries but could not find what what is causing this.
Edit: It it could be "Gateway Duplicates" option, but this is not enabled on any of the tunnels.
This was solved by missing GW on WAN interfaces