i have three router like R1,R2,R3. R1 and R2 are running site to site vpn and router R3 running as ZBF.
before configure ZBF site to site is working. when ZBF is configure the site to site vpn is not working. i inspect the udp traffic on zbf but not still working. please help me to solve this problem. my ZBF configuration is below.
1. ip access-list ex esp
permit esp any any
2. class-map type inspect match-any isakmp-class
match protocol udp
match access-group name esp
3. policy-map type inspect isakmp-policy
class type inspect isakmp-class
inspect
4. zone-pair security in2out source in destination out
service-policy type inspect isakmp-policy
5. zone-pair security out2in source out destination in
service-policy type inspect isakmp-policy