Hello,
I have weird situation with ipsec site-to-site. At the begging I must say that I don’t control second site of tunnel, It’s controlled by differed vendor.
In my configuration I can see that packets are pushed to tunel but nothing back to me.
My question is:
is there any tool, method to verify if packets are dropped by ipsec tunel for example because source IP address of packet is different that defined in ipsec policy ?
or is there any method for saving packets for futher analysis in wireshark ?
Basically I need method to confirm that packets which I’ve send to opposite tunel site are dropped, declined or whatever.
If the opposite side of the tunnel is not yours, you can never know what happened to your packets that you have sent there if you didn’t receive any answer.
Yes I know but I was wondering if there is any chance that packets which back to me are dropped by my router, even if they would be dropped I should see in IPSec->Installed SA → Current Bytes any bytes instead of 0. Am I correct ?