ScreenOS Firewalls (NOT SRX)
ScreenOS Firewalls (NOT SRX)

Help: after configuring policy base VPN, nothing in Event logs and in alert

12.30.08   |  
‎12-30-2008 06:06 PM
After configuring policy base VPN on SSG520, nothing in Event logs, policy log and in alert. The remote IP is live and traffic was generated from both side.
3 REPLIES
ScreenOS Firewalls (NOT SRX)

Re: Help: after configuring policy base VPN, nothing in Event logs and in alert

12.30.08   |  
‎12-30-2008 06:33 PM

Hi,

 

Is the VPN up and running??? If you look in the event log do you see the phase 2 complete for the VPN???

 

Or are you not seeing anything at all???

 

If that is the case then it might be that the traffic isn't hitting the policies to establish the VPN. Make sure that all your vpn policies are at the top of the polcy lists.

 

Regards

 

Andy

JNCIS-FWV
JNCIA-WX
JNCIA-SSL
JNCIA-ER
Highlighted
ScreenOS Firewalls (NOT SRX)

Re: Help: after configuring policy base VPN, nothing in Event logs and in alert

01.02.09   |  
‎01-02-2009 02:41 AM

Hi,

I asume that you are aware of the fact that for a policy-based VPN the policy's on both side of the vpn-tunnel have to be the same, for example if you put network 10.10.10.0/24 on one side and 10.10.10.0/25 on the other, it doesn't work!

 

Stefan

ScreenOS Firewalls (NOT SRX)

Re: Help: after configuring policy base VPN, nothing in Event logs and in alert

01.02.09   |  
‎01-02-2009 06:43 AM
Thank you very much Stephen and Andy. It's resolved. It was a wrong interface.