The IPsec tunnel works fine. but could not ping the remote VPN gateway, what could be the problem
The issue could be
I had same issue. Our monitoring tool send ping to remote gateway always.
1. Activate ICMP Requests from Global properties.
If still same:
edit $FWDIR/lib/crypt.def file
- find #ifndef NON_VPN_TRAFFIC_RULES
add belowed config#ifndef IPV6_FLAVOR#define NON_VPN_TRAFFIC_RULES (dst=remote_peer_gateway_IP)#else
#define NON_VPN_TRAFFIC_RULES 0#endif#endif
#endif /* __crypt_def__ */
Then install policy. After you will get direct access to remote gateway...
Retrieving data ...