EdgeRouter L2TP VPN can't pass IKE phase 1
-
A DNAT rule was the culprit of everything, it was redirecting the traffic and not letting it reach WAN_LOCAL.
FINALLY SOLVED!!!!!!!!!!!!!!!!!!!!!!!!!
As reminder for anyone that could encounter a similar issue:
DNAT rules are evaluated before firewall rules. -
@romo said in EdgeRouter L2TP VPN can't pass IKE phase 1:
A DNAT rule was the culprit of everything, it was redirecting the traffic and not letting it reach WAN_LOCAL.
FINALLY SOLVED!!!!!!!!!!!!!!!!!!!!!!!!!
As reminder for anyone that could encounter a similar issue:
DNAT rules are evaluated before firewall rules.Also as a remember, don't wait a month before reporting an issue, we weren't looking at rules, as they had not changed for a month!
-
@romo said in EdgeRouter L2TP VPN can't pass IKE phase 1:
A DNAT rule was the culprit of everything, it was redirecting the traffic and not letting it reach WAN_LOCAL.
FINALLY SOLVED!!!!!!!!!!!!!!!!!!!!!!!!!
As reminder for anyone that could encounter a similar issue:
DNAT rules are evaluated before firewall rules.Yes, this is a known function of VyOS/EdgeOS. But nothing was ever posted baout DNAT rules in use, so I assumed there were none. There are not by default.
