Could you please export activity log and paste it here.?
Few things needs to add into firewall rule.
1. Protocol = Use all protocol
2. Add add VPN agent service under application tab.
Thanks for the information,
We don't want to use all protocol , we have chosen IP protocol
It sounds a bell that there is a HF to correct this issue. Can you try to install patch 3 or 4? and see if the issue persist?
Make VPN rule above all rules and check why connection is fallen under "Dynamically Cre,," and Blocked all traffic Matched Rule.
Thanks for the updates, but the issue is only seen on two machines . I have more than 2000 machines .
Do those two machines have different firewall policies?