Hi,
Can someone please enlighten me about the following matter?
I have got a site-to-site vpn set up between a Fortigate and Aruba BGW(9004-lte)
Traffic over vpn works fine (172.16.80.1 is on the FG with 172.30.254.11 is on the BGW side).
From the datapath session table you can see a ping from the FG to a client on the other side of the vpn tunnel.
Why does the session table show source traffic from FG to "ipsecmap 10" but traffic from the client has destination "tunnel 16"?
How can I get more information about "tunnel 16" and "ipsecmap 10"
-----------------------------------------------------------------------------------------------------------------------
show datapath session table 172.16.80.1
Source IP or MAC Destination IP Prot SPort DPort Cntr Prio ToS Age Destination TAge Packets Bytes Flags CPU ID
----------------- --------------- ---- ----- ----- -------- ---- --- --- ----------- ---- ---------- ---------- --------------- -------
172.16.80.1 172.30.254.11 1 470 2048 0/0 0 0 0 ipsecmap 10 2 1 84 FCIZ 1
172.16.80.1 172.30.254.11 1 461 2048 0/0 0 0 0 ipsecmap 10 b 1 84 FCIZ 1
172.16.80.1 172.30.254.11 1 445 2048 0/0 0 0 1 ipsecmap 10 1c 1 84 FCIZ 1
172.30.254.11 172.16.80.1 1 450 0 0/0 1 56 1 tunnel 16 17 1 84 FIZ 1
172.16.80.1 172.30.254.11 1 448 2048 0/0 0 0 1 ipsecmap 10 19 1 84 FCIZ 1
172.30.254.11 172.16.80.1 1 447 0 0/0 1 56 1 tunnel 16 1a
-----------------------------------------------------------------------------------------------------------------------
Many thanks
Tom