Support Center > Search Results > SecureKnowledge Details
NAT-T traffic being routed out the wrong interface when encrypted Technical Level
Symptoms
  • NAT-T traffic being routed out the wrong interface, when encrypted.
  • Phase 1 and Phase 2 tunnel completed, but some traffic does not reach the remote peer.
    Doing a traffic capture for the specific SPI - show no NAT_T ESP traffic towards the peer.

    Checking the route that would be used by the peers traffic if not encrypted (ie defautl route), and then performing a traffic capture on that interface - shows the encrypted traffic leaving this interface instead of the interface which faces the peer.
Solution
Note: To view this solution you need to Sign In .