No Gateway added for remote IPSEC endpoint
I have two firewalls in HA pair 2.5.2.
One of them has this issue where IPSEC does not add routes for remote VPN endpoint(s) to routing table.
Expected entries look like this.
remotePublicVpnIP1 LocalISPGw1 UGHS em0
remotePublicVpnIP2 LocalISPGw2 UGHS em1
Example where 126.96.36.199 and 188.8.131.52 are IPs of remote VPN firewalls
184.108.40.206 220.127.116.11 UGHS em0
18.104.22.168 22.214.171.124 UGHS em0
This works on all other firewalls we have, just this one. I compared config to second member that has these entries but could not find what what is causing this.
Edit: It it could be "Gateway Duplicates" option, but this is not enabled on any of the tunnels.
This was solved by missing GW on WAN interfaces