Debugging IPsec (2)

Look whats happening in the network:

Show routing table:route show

Sniff the traffic:tcpdump -i IF

For packets to be forwarded properly, a default route must exists.

If no route exists, packets entering the system will not be placed in ip output queue

Even if the route points to something non-exists, since the packets will follow the routes setup up by the IPsec flows