No Gateway added for remote IPSEC endpoint
I have two firewalls in HA pair 2.5.2.
One of them has this issue where IPSEC does not add routes for remote VPN endpoint(s) to routing table.
Expected entries look like this.
remotePublicVpnIP1 LocalISPGw1 UGHS em0
remotePublicVpnIP2 LocalISPGw2 UGHS em1
Example where 220.127.116.11 and 18.104.22.168 are IPs of remote VPN firewalls
22.214.171.124 126.96.36.199 UGHS em0
188.8.131.52 184.108.40.206 UGHS em0
This works on all other firewalls we have, just this one. I compared config to second member that has these entries but could not find what what is causing this.
Edit: It it could be "Gateway Duplicates" option, but this is not enabled on any of the tunnels.
This was solved by missing GW on WAN interfaces