1. I see a problem with IPSec tine by time with one of my routers that is RB750Gr3. Sometime IPSec tunnel is UP, PH1 and PH2 are up but not sending traffic! Problem resolved after i kill active peers.
2. Next problem is that sometimes users try to access server to remote site and cannot find route! I try traceroute and router sebd all traffic to public default route, even that there are NAT to send it trough tunnel.
This is resolved only if i delete NAT role and create it again!
Someone has faced this issue before?
Code: Select all
add dst-address=192.168.79.0/24 peer=peer1 proposal=StarBroker sa-dst-address=RemotePeerPublicIP sa-src-address=LocalPeerPublicIP src-address=192.168.1.222/32 tunnel=yes add action=accept chain=srcnat dst-address=192.168.10.102 src-address=192.168.1.222 add action=accept chain=srcnat dst-address=192.168.10.100 src-address=192.168.1.222