You’re Not Crazy!
Sometimes things just do not work they you *think* they should! But, as soon as you see how it does work you’ll see that it really is easy.
I was first going to write an entire post telling you all the settings that you need in order to get the IPSEC tunnel running with all subnets, but then you just don’t need it. In fact if you are reading this you have already tried everything you could think of and still can’t figure out why only 1 tunnel will activate while the others drop.
The answer?
Create Multiple Phase 2 Entries!
Yes, that is all there is to it. You can still create 1 policy forcing the traffic over the VPN for all your subnets, but you will need to create separate Phase 2 entries for each subnet you want access to.
Still need help?
Just comment below and I will be glad to help you configure your IPSEC tunnels properly.
