• Ipsec status -> Overview Tab shows only yellow icons

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    H

    I have search for open tickets for 1.2rc2, but i cannot find it….

  • System log WebGui –> IPsec

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    H

    it works with the newest snapshot, thanks

  • Dashboard - IPSEC - Overview

    Locked
    2
    0 Votes
    2 Posts
    2k Views
    H

    Please search…....

    http://forum.pfsense.org/index.php/topic,6085.0.html

  • OPTX: THE PACKET IS RETRANSMITTED BY…

    Locked
    10
    0 Votes
    10 Posts
    9k Views
    J

    yes, seems to work.

    Thanks!

  • Any openbsd gurus?

    Locked
    4
    0 Votes
    4 Posts
    3k Views
    Cry HavokC

    So, go ask the question on the relevant FreeBSD list  ;)

    If/when it's imported into FreeBSD the chance of getting it into pfSense improve considerably, particularly if it's imported into the version pfSense uses as it's core.

  • Ipsec multiple tunnels one-way traffic

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • IPsec between two 1.2beta1 down after two days.

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    C

    Depending on which 1.2b1 you have (whether a snapshot or the release version), there could be IPsec problems. I don't recall what versions had issues that far back.

    The 1.2RC2 release, or current 1.2 snapshots, don't have any IPsec issues. I upgrade to snapshots a couple times a week, and other than the couple times in the past 6 months that IPsec has actually been broken, have never had any problems.

    Typically when this happens, there's a mismatched timeout somewhere. Prefer old SA's shouldn't be used in this case.

  • 9/18/07 snapshot - IPSEC issues

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    C

    There were some major IPsec problems in some snapshots around that timeframe. They should all be cleared up now, try a snap from today.

  • Ipsec tunnel on second wan connection

    Locked
    5
    0 Votes
    5 Posts
    2k Views
    C

    You will need a static route for the traffic to be directed out the proper WAN interface.

  • Trying to setup connection Mobile Clients

    Locked
    1
    0 Votes
    1 Posts
    3k Views
    No one has replied
  • Howto set upp "lan to lan"?

    Locked
    13
    0 Votes
    13 Posts
    5k Views
    ?

    I´m not sure what i´m doing wrong here, but i dont get the dhcp-relay working of ipsec, is that possible in the first place?

    Also Trying to trunk 2 vlans from a cisco without success, i have setup the vlan and correct tagging(as they come from the cisco), but i cant get the inside(remote vpn) cisco working, cant even see info with cdp.

    How should i set up the trunkport?.
    Should the lan interface be bridged with the native vlan from the cisco and then the second vlan bridged with lan?

    I´d be one happy pfsense user if i could get any of those to scenarios working ;)

    regards /F

  • Anybody successfully connected a Zyxel 662 via IPSEC to pfSense?

    Locked
    6
    0 Votes
    6 Posts
    8k Views
    B

    Found that this is NAT-T enabled and then disabled again. during the change there is something weird going on, but the tunnel still does not get established.
    Please look at the second log I sent.
    This is looking at a similar problem. http://forum.pfsense.org/index.php/topic,5473.0.html
    But I am using the IPSEC on the WAN interface so probably not a routing problem - problem with CARP?
    -I don't think so because I have a different site with a m0n0wall connecting perfectly, only the Zyxel is bugging me!
    I set the MTU on the zyxel to 1400 just to make sure it is not ADSL that is eliminating the reply and thus the timeout, but no result.

    Any ideas?

    Thanks!

  • IPSec with asn1dn identifier

    Locked
    7
    0 Votes
    7 Posts
    7k Views
    V

    if the server needs to be identified as well, peers_identifier asn1dn option is also necessary

  • IPSEC NAT-T

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • VPN'S having ping times in the 1500 to 3000 time frame ???

    Locked
    1
    0 Votes
    1 Posts
    2k Views
    No one has replied
  • Ipsec lan to lan (pfsense behind routers)

    Locked
    2
    0 Votes
    2 Posts
    3k Views
    M

    You will need to add rules to allow UDP 500 and ESP on your pfsenses wan interfaces

  • New deployment with VPN support

    Locked
    4
    0 Votes
    4 Posts
    2k Views
    GruensFroeschliG

    Per default there are no rules and thus block everything.

  • Netgear FVS 318v3

    Locked
    3
    0 Votes
    3 Posts
    2k Views
    F

    I found out that the secret word was too long.  I made it shorter.  I got it working.  I have this tunnel working one way as well.  I can go to their end but can't come back.

  • Upgraded from 1.0.1 to 1.2 RC1 and Ipsec is not working

    Locked
    17
    0 Votes
    17 Posts
    7k Views
    M

    go to Firewall -> Rules the select the wan tab
    then click the little square with a plus icon.
    then create a rule to allow the ESP protocol and another to allow UDP port 500

  • Ipsec routing

    Locked
    8
    0 Votes
    8 Posts
    4k Views
    K

    No matter of priority between IPSEC and local atached network (it seems that IPSEC gets over locals). I think U have to play more with subneting/superneting techniques.

    The problem is that 10/8 on A you have to use eg 10.2.0.0/15 which includes 10.2/24 and 10.3/24 networks:

    (10.2/15)
          box A <–-(tun A-C)---> ipsec to other networks, works fine
            A
            |
        (tun A-B)
            |
            V
          box B                     
        (10.1/16)                 
        ----|----                 
        |        |
      LAN    OPT1
    10.1/24  10.1.1/24

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.