Strongswan connection to CheckPoint VPN device
Over the last 2 days i have tried to debug a connection between a Strongswan system and a CheckPoint firewall.
The IPSEC tunnels seem to be brought up both Phase 1 and 2 but the traffic is not reaching the other peer.
I can see traffic entering the tunnel yet the other party does not see any de-crypts.
the config that i have is below. My peer uses a /32 ip address for phase 2 which is in the same subnet as their public ip address.
On top of that they have a NAT on their side that converts my ip range to a static ip.
Where to look to understand what is going on here?
left=%defaultroute # private ip of openswan instance
leftid=x.x.x.x #public ip of openswan instance
leftsubnet=10.13.2.0/24 # private ip of #openswan/32 and private ip of java application instances/32
right=a.b.c.d # public ip of the third party network