Hi all,
I have run into an issue where while trying to route to one of the networks via static route, I have noticed that traffic for this particular destination (eg., 10.1.1.1) tries to go through IPSec tunnel instead of another outside interface that static route is pointing to. One thing to note is that inside network belongs to 10.2.2.0/24 and rest of the company is using other 10.x.x.x subnets so IPSec ACL encrypts traffic to anyone in 10.0.0.0/8 range and it looks like that when we try to send traffic to external destination on subnet 10.1.1.0/24, it chooses IPSec endpoint versus static route. Has anyone else seen this behavior and if so, what are the suggested workaround. Please let me know. TIA.
Tony
This thread was automatically locked due to age.