• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

IPsec to a Linksys VPN router BEFVP41 not working [SOLVED]

Scheduled Pinned Locked Moved IPsec
4 Posts 2 Posters 6.7k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • F
    fairchild
    last edited by Sep 26, 2009, 11:21 PM Sep 24, 2009, 6:50 AM

    Sep 23 23:41:11 racoon: [Unknown Gateway/Dynamic]: ERROR: such policy already exists. anyway replace it: 172.24.60.0/24[0] 172.25.20.0/24[0] proto=any dir=in
    Sep 23 23:41:11 racoon: [Unknown Gateway/Dynamic]: ERROR: such policy already exists. anyway replace it: 172.25.20.0/24[0] 172.24.60.0/24[0] proto=any dir=out
    Sep 23 23:41:11 racoon: [Unknown Gateway/Dynamic]: ERROR: such policy already exists. anyway replace it: 172.25.20.0/24[0] 172.25.20.1/32[0] proto=any dir=in
    Sep 23 23:41:11 racoon: [Unknown Gateway/Dynamic]: ERROR: such policy already exists. anyway replace it: 172.25.20.1/32[0] 172.25.20.0/24[0] proto=any dir=out
    Sep 23 23:41:11 racoon: INFO: unsupported PF_KEY message REGISTER
    Sep 23 23:41:11 racoon: WARNING: setsockopt(UDP_ENCAP_ESPINUDP_NON_IKE): UDP_ENCAP Invalid argument
    Sep 23 23:41:11 racoon: [Self]: INFO: x.x.x.x[500] used as isakmp port (fd=15)
    Sep 23 23:41:11 racoon: WARNING: setsockopt(UDP_ENCAP_ESPINUDP): UDP_ENCAP Invalid argument
    Sep 23 23:41:11 racoon: [Self]: INFO: x.x.x.x[4500] used as isakmp port (fd=14)
    Sep 23 23:41:11 racoon: INFO: Reading configuration from "/var/etc/racoon.conf"
    Sep 23 23:41:11 racoon: INFO: @(#)This product linked OpenSSL 0.9.8e 23 Feb 2007 (http://www.openssl.org/)
    Sep 23 23:41:11 racoon: INFO: @(#)ipsec-tools 0.7.2 (http://ipsec-tools.sourceforge.net)

    I am having trouble getting the router to work with pfsense using ver 2.0, what additional info do you guys need to help me out? I see several people have IPsec working with pfsense and the same linksys so it must be something obvious, i am confident that both ends are configured the same, any help would be awesome!

    1 Reply Last reply Reply Quote 0
    • J
      jimp Rebel Alliance Developer Netgate
      last edited by Sep 24, 2009, 2:44 PM

      Looks like your pfSense snapshot is a little out of date.

      When is that from? That UDP_ENCAP error was fixed a while ago. I'd update and then try again, to make sure that it isn't a problem with the snapshot you're using.

      Also, check Status > IPsec, see if it shows up there.

      And did you add firewall rules on the IPsec tab?

      Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

      Need help fast? Netgate Global Support!

      Do not Chat/PM for help!

      1 Reply Last reply Reply Quote 0
      • F
        fairchild
        last edited by Sep 26, 2009, 4:47 AM Sep 26, 2009, 4:42 AM

        @jimp:

        Looks like your pfSense snapshot is a little out of date.

        When is that from? That UDP_ENCAP error was fixed a while ago. I'd update and then try again, to make sure that it isn't a problem with the snapshot you're using.

        Was using snapshot from the 18th, I just updated to:

        2.0-ALPHA-ALPHA
        built on Wed Sep 23 11:28:05 UTC 2009
        FreeBSD 7.2-RELEASE-p3

        @jimp:

        Also, check Status > IPsec, see if it shows up there.

        And did you add firewall rules on the IPsec tab?

        A picture is worth 1000 words, here are 8 snaps:








        Log file:

        Sep 25 21:25:01 racoon: [Unknown Gateway/Dynamic]: ERROR: such policy already exists. anyway replace it: 172.25.60.0/24[0] 172.25.20.0/24[0] proto=any dir=in
        Sep 25 21:25:01 racoon: [Unknown Gateway/Dynamic]: ERROR: such policy already exists. anyway replace it: 172.25.20.0/24[0] 172.25.60.0/24[0] proto=any dir=out
        Sep 25 21:25:01 racoon: [Unknown Gateway/Dynamic]: ERROR: such policy already exists. anyway replace it: 172.25.20.0/24[0] 172.25.20.1/32[0] proto=any dir=in
        Sep 25 21:25:01 racoon: [Unknown Gateway/Dynamic]: ERROR: such policy already exists. anyway replace it: 172.25.20.1/32[0] 172.25.20.0/24[0] proto=any dir=out
        Sep 25 21:25:01 racoon: INFO: unsupported PF_KEY message REGISTER
        Sep 25 21:25:01 racoon: WARNING: setsockopt(UDP_ENCAP_ESPINUDP_NON_IKE): UDP_ENCAP Invalid argument
        Sep 25 21:25:01 racoon: [Self]: INFO: x.x.x.x[500] used as isakmp port (fd=15)
        Sep 25 21:25:01 racoon: WARNING: setsockopt(UDP_ENCAP_ESPINUDP): UDP_ENCAP Invalid argument
        Sep 25 21:25:01 racoon: [Self]: INFO: x.x.x.x[4500] used as isakmp port (fd=14)
        Sep 25 21:25:01 racoon: INFO: Reading configuration from "/var/etc/racoon.conf"
        Sep 25 21:25:01 racoon: INFO: @(#)This product linked OpenSSL 0.9.8e 23 Feb 2007 (http://www.openssl.org/)
        Sep 25 21:25:01 racoon: INFO: @(#)ipsec-tools 0.7.2 (http://ipsec-tools.sourceforge.net)

        Now I just reboot both locations and still no luck  ??? ???

        1 Reply Last reply Reply Quote 0
        • F
          fairchild
          last edited by Sep 26, 2009, 11:21 PM

          it just started working!!!!!!!!! i didnt change a thing, people can use my screens if they need help setting up ipsec with pfsense and a linksys BEFVP41

          1 Reply Last reply Reply Quote 0
          1 out of 4
          • First post
            1/4
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
            This community forum collects and processes your personal information.
            consent.not_received