Create a Post
Showing results for 
Search instead for 
Did you mean: 

VPN Site-to-Site with 3rd party.

I have a VPN Site-to-Site with 3rd party. The goal is to route all traffic from the remote site (3rd party VPN) via the main site (CP.)


Tunnel is up and I can see traffic from the remote site; Internet-bound traffic from the remote site is failing/denied with the following error:


Encryption Failure: according to the policy the packet should not have been decrypted.



Question: How can I route ALL internet traffic (or at least http. https) from remote site via main site (CP.)


is it something with the encryption domain ?



0 Kudos
1 Reply

What is the encryption domain at each end?

Pretty certain the only way to get this to work is to use a route-based VPN (implies VTIs) with an empty encryption domain.


0 Kudos


Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events