As you are using IPSec you also need to forward IP protocol number 50/51 [depending you are using ESP or AH; please note these are not ports but IP protocol numbers]. Further you should also forward UDP port 4500 for NAT-T.
Please make these changes and post updated logs.
Thank you.