we replaced a central cluster with new hardware and migrated to R80.10 from R80.40.(same configuration)
SMS was already running on R80.40.
VPN to remote gateways with fixed IP are up.
But now all site to site VPNs with DAIP-gateways (1100 appliances behind LTE-routers) are down.
We could see NAT-T packets from the DAIP gateways to the central site, phase 1 and phase 2 looks good but no packets are gone over the tunnel. Central gateway shows encryption of the packets for the remote encryption domain but does not reach the remote gateways.
TAC is involved but with no finding at the moment.
Has anyone running R80.40 with DAIP-gateways and VPN?
Any ideas are welcome.