If traffic is not sent into route-based VPNs

There are some common causes and solutions when traffic is not sent into route-based VPNs.

It is possible to create a half-configured route-based VPN by configuring only one tunnel interface and the routing. This configuration creates a black-hole routing situation in which traffic routed to the tunnel interface is silently discarded. No warnings are given when you install the Firewall policy, as the configuration is treated as valid. Traffic is only sent into the a route-based VPN after you fully define the Route-Based VPN Tunnel elements.