Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pfSense blackholing traffic from VPN

    Scheduled Pinned Locked Moved IPsec
    1 Posts 1 Posters 363 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • cemyl95C
      cemyl95
      last edited by

      Not sure if this is the right section for this but it's the best place I could find, so here goes...

      So I'm seeing some odd behavior on one of my pfSense boxes and I can't for the life of me figure out why. I have a pfSense box that terminates all of my VPN connections, and then connects to a point-to-point back to the main firewall that connects back into the rest of the local network. This VPN router does not have the firewall enabled so that's ruled out as a potential issue.

      The behavior that I'm seeing is that hosts on the remote end of one of the IPSec VPNs (an Azure VM) are unable to access the local network. A packet capture shows packets coming from the remote hosts entering the IPsec interface but it doesn't exit out of the point-to-point interface to get to the local network, so it appears that traffic is just getting black-holed by the VPN router.

      I've checked routing and the routes are all correct (I'm using OSPF between the VPN router and the main firewall, and BGP over the VPN links). Does anyone have any ideas as to what could be going on?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.