We have a Vwire configuration with a paloalto (5.0.6) between a third-party router and the wan port. Security policy is allow any - any for both directions/security zones, log at session start an end. Everything works (as expected), all VPN Tunnels on the third party device are up and running, b ut we dont see any ipsec-esp traffic in the traffic monitor, or ACC stats. If we make a packet capture on the paloalto we do see that the ipsec-esp packets are passing through the vwire. We already tried du define two additional rules with ipsec as application - but that does not change anything. Any hints ?
... View more