• IPSec Mobile Internet access but no Intranet.

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • Racoon: ERROR: /var/etc/ipsec/racoon.conf:22: "/;" syntax error

    Locked
    7
    0 Votes
    7 Posts
    4k Views
    SpookjeS

    Sorry for the late reply, i was out of commission for a bit…

    thanks jimp, that did fix it...

  • SAD Out Of Sync w/ Multiple SAD After Cisco RV082 reboot - 1.2.3

    Locked
    7
    0 Votes
    7 Posts
    2k Views
    J

    @lsens:

    How did you solve this problem? I have a similar one with another Cisco Firewall and 2.0.1.

    I fixed it by getting rid of my Cisco devices and deploying Pfsense. I got tired of the issues I kept seeing with Ciscos supposed "great' equipment. Found a couple spare boxes, thru in some NIC's and all my sites are stable.

  • IPsec with pfBlocker not working?

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • Assign static IP's to mobile IPsec Clients

    Locked
    2
    0 Votes
    2 Posts
    3k Views
    jimpJ

    It's not possible to assign them static from the server in that way for mobile IPsec.

  • Routing to IPSec addresses…

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    jimpJ

    Yes. IPsec always has to match up on both ends.

  • Another IPsec Routing Question - SOLVED

    Locked
    5
    0 Votes
    5 Posts
    3k Views
    L

    @dhatz:

    I'm not sure it's needed to go that route, if you have a relatively "simple" VPN topology.

    In my case my wonky proxy settings were misdirecting traffic.  Otherwise my IPsec tunnels just work (though individual computers sometimes need new static routes).

    I like the info in your link. 
    The GRE network would give me Tunnel IPs that I could use for a static route gateway.  OpenVPN gives me that too but not IPsec tunnels.

    Appreciated.

  • Mobile clients: Phase2 PFS Group influences to ALL IPSEC tunnels

    Locked
    3
    0 Votes
    3 Posts
    3k Views
    J

    Thanks,
    I had the same problem that all other tunnels (whith different phase 2 settings) no longer worked in phase 2.
    Disable the global setting "Provide the Phase2 PFS group to clients ( overrides all mobile phase2 settings )" in mobile clients tab has solved it.

  • Selectively routing traffic across IPSEC Tunnel

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    D

    If I may offer a suggestion: In this case just go with OpenVPN.

    The other options they offer (PPTP, L2TP/IPsec etc) are meant for those using their PCs to connect and prefer not to install 3rd party VPN tools.

  • Host to host in site to site vpn

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    C

    Just do address to address on the phase 2.

  • Unable to login to PFSense Webconfig after IPSec setup.

    Locked
    2
    0 Votes
    2 Posts
    1k Views
    C

    Running "killall racoon" at a command prompt should flush the SPD and leave you able to get back in. At least until something gets touched that restarts it, but if you go straight to the IPsec page and delete or fix the wrong entry and save, you should be good.

  • Access to port 80 over ipsec

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • Site to Site IPSEC - Please Help

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • New WAN IP configured and getting "Remote Side not responding" error

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    C

    Packet capture on WAN on both sides filtering on port 500. You probably don't have connectivity in one direction for some reason, like if it's a Comcast business cable modem, those usually enable firewalls within the modem by default that would block IPsec inbound from the Internet .

  • Accessing webinterface through ipsec tunnel

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • IPSec Tunnel UP (green) - But cannot ping internal networks

    Locked
    5
    0 Votes
    5 Posts
    7k Views
    G

    Hey Brian,

    I've got a similar issue, though mine seems to be the inverse of yours. I can ping hosts from PFSense, but PFSense is refusing to send logs over the tunnel, and I can only ping in one direction, not the other. When I ping an internal host from my data center, it tries to be sent out the WAN hole instead of going across the Tunnel.

    Do you have any bright ideas on this, seeing as you managed to figure your issue out?

    My thread is here - http://forum.pfsense.org/index.php/topic,55900.0.html

  • 0 Votes
    23 Posts
    40k Views
    S

    For whatever reason, racoon segfaults when I run RSA+Xauth after the client sends back the XAUTH_USER_PASSWORD. This doesn't happen with PSK+Xauth oddly. >:(

  • I need clarification about roadwarrior ipsec accounts.

    Locked
    1
    0 Votes
    1 Posts
    1k Views
    No one has replied
  • Outlook/Thunderbird Stalling

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    J

    System -> Advanced Misc. Turn on MSS to limit the VPN traffic to 1400 (leave blank for this value). Fixed my issue. W00h00 :O)

  • Sasyncd status?

    Locked
    5
    0 Votes
    5 Posts
    2k Views
    E

    The problem with it are the not supported synchronization of replay counter in FreeBSD.

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.