UTM IPsec VPN question. I am able to make a connection between the two sites but no data passes through?

Hi Alec - welcome to the UTM Community!

What is the device to which you're connecting the UTM?

Cheers - Bob

It’s a UTM also. I’m not sure if this matters but the UTM I am using to initiate the connection is behind a firewall which I have no access to. However it seems weird that I am able to make a connection to it but am unable to route traffic properly which seems like it is a routing issue.

Please show pictures of the Edits of the IPsec Connection and Remote Gateway from each UTM.

Cheers - Bob

I am unable to get a picture of the "respond only" site, however here is the pictures from the "initiate" site with a log file also from the initiation side. Is there anything in the log file that peaks your attention?

ipsec-2018-12-07.txt

Is DPD selected in both UTMs?  How about NAT-T?  Is the Respond only UTM (home) behind a NAT, or does it have a public IP on its External interface?

Cheers - Bob

Yes and Yes. The respond only has an external IP on its external interface

Let's look at whether there's any traffic in the tunnel when you attempt to communicate with a device at home.

First, we need the REF_ of the tunnel:

cc get_object_by_name ipsec_connection site_to_site 'Dorm\-to\-Home'|grep \'ref

Let's say we discovered REF_IpsSitDormToHome, we can watch traffic in the tunnel with:

espdump -n --conn REF_IpsSitDormToHome -vv

What do you see?

Cheers - Bob

Let's look at whether there's any traffic in the tunnel when you attempt to communicate with a device at home.

First, we need the REF_ of the tunnel:

cc get_object_by_name ipsec_connection site_to_site 'Dorm\-to\-Home'|grep \'ref

Let's say we discovered REF_IpsSitDormToHome, we can watch traffic in the tunnel with:

espdump -n --conn REF_IpsSitDormToHome -vv

What do you see?

Cheers - Bob