01-31-2022 06:26 AM
I have a 2130 in my main site with a static IP. I have an FTD 1010 in a remote site at a users home using a dynamic IP.
Both are managed in FMC
I'm trying to build a Site to Site tunnel between the 2 devices using FMC.
I can see a tunnel on the 1010 to the 2130.
Session Type: LAN-to-LAN Detailed Connection : x.x.x.x Index : 54 IP Addr : x.x.x.x Protocol : IKEv2 IPsecOverNatT Encryption : IKEv2: (1)AES-GCM-256 IPsecOverNatT: (1)AES-GCM-256 Hashing : IKEv2: (1)none IPsecOverNatT: (1)none Bytes Tx : 196015 Bytes Rx : 0 Login Time : 11:43:58 UTC Mon Jan 31 2022 Duration : 2h:33m:02s Tunnel Zone : 0
IKEv2 Tunnels: 1
IPsecOverNatT Tunnels: 1
on the 2130 side of the tunnel status, it has the internal dhcp assigned outside address and no active sessions.
I cannot pass traffic between the 2 locations. NAT is in place to bypass traffic.
Solved! Go to Solution.
01-31-2022 06:33 AM
DIsregard. it was a routing issue. I have 2 interfaces facing outside. the remote location traffic was not routed to the proper interface.
01-31-2022 06:33 AM
DIsregard. it was a routing issue. I have 2 interfaces facing outside. the remote location traffic was not routed to the proper interface.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide