General discussion

We have the tunnel established, but traffic doesn't appear to be hitting the tunnel only when leaving my side. I see no packet encaps, but do get decaps. I've went over and over the config and I'm not seeing anything that stands out. The remote side is a Cisco ASR1002-X.

I was thinking it may either be route or security profile related, but I have the route setup to use the tunnel.10 interface for this specific VPN in the virtual router. The odd thing on the security policy is I have added one for this traffic at the top of my list basically, but when I view the logs when sending test traffic the traffic is hitting our catch all at the bottom of the list.

Why would it not be hitting my rule toward the top? Any help is greatly appreciated!