There are many possible factors that might cause the IPSec tunnel to fail to connect to the Web Security Service (WSS).
Web Security Service
Verify the following:
If these do not fix the connection, contact Technical Support for assistance.
Provide the Cloud Network team with the Firewall IPSec logs and Firewall Egress IP.