Always Networks Blog - VPN

Checkpoint VPN Error: According to the policy the packet should not have been decrypted

Magnifying Glass

I encountered an issue recently while trying to allow access to a new subnet over an existing VPN. The far end device was a Cisco router, and had an access list matching an entire class A subnet which was applied to the crypto map. The traffic destined for the new subnet was arriving at our firewall, and showing in the logs as dropped, with the …

Read whole post...