- Silver, 250 points or more
What are possible reasons that traffic doesn't return in an IPSEC tunnel?
I see with sh crypto ipsec sa that packets become encrypted at the sending site and decrypted at the remote site but they doesn't return. :-(
1)routing problem at the other side
2)blocking ACL outbound at the other side
3) other ?
It's for an environment terminitating normally tunnel interfaces in IPSEC mode but now also with a dynamic crypto map tunnel.
Can it be that traffic is 'pulled'at the other side in another tunnel and then dropped?