IPSec Outbound UDP Blocked
-
We currently have some site-to-site VPNs using OpenVPN. I am switching these over to IPSec in order to network pxe boot across the vpn. It wouldn't work with OpenVPN but does with IPSec. These clients are connecting back to a central pfSense machine at our office.
I am having problems with one client not connecting with IPSec and I think the problem is due to the remote site's ISP (or corporate firewall) blocking outbound UDP 500/4500.
The remote client routers (Phoenix Contact mGuard rs2000) have an option to encapsulate the IPSec into a tcp packet with a port you can specify. Is this something pfSense is compatible with? I can't find any settings that mention IPSec tcp encapsulation.