...
You cannot use same Public IP as IPsec local endpoint and use it in DNAT rule without specific port (DNAT 1:1). If you have only 1 Public IP use port DNAT(Port Forwarding)!
If you already a have problem configuration (DNAT 1:1 and Public IP as IPsec local endpoint) you can be faced with random problem of IPsec . For fixing no longer working. To fix this issue delete DNAT 1:1 (or migrate to port forwarding DNAT), then delete IPsec from Edge configconfiguration, create a new IPsec with same config
Accessing the Edge
...