We have a couple of IPSEC/TCP connections between 3005 and 3002. Tunnel establishment works fine. The problem is that we are unable to initiate communcation from the 3005 to the 3002 which makes remote monitoring of the 3002 impossible. From the 3002 side we can initiate communication to the 3005 and the management server which is on a separate VLAN and first then we are able to contact the 3002 remotely. On the 3002 for every subnet a little "tunnel" is being setup to the 3005.
Well this got a bit messy, but to put it in short the 3002 is initiating communications and decides who to communicate with. We used to run IPSEC/UDP before and then things worked fine.
Any ideas?
Kind regards,
Rutger