FDQN not working

Jonb

I have a problem were when a remote site has set the IPsec as FDQN on my firewall it says

ERROR: couldn't find the pskey for 88.111.111.145.

although there side is setup with FDQN and I have changed the identifyer on my side.

If I then put in the ip address it then says expecting user FDQN.

I can win what ever I do.

Both boxes are running 1.2.2 and has been tried on 1.2.1. I dud read through the documentation on the trutorial but still no joys.

Jonb

Is anyone else having this problem?

heiko

is this a static to static tunnel and/or with the main or aggressive mode??

Jonb

It is Satic to dynamic IP on main mode and ESP. The encription is SHA-1 with AES 128 authenticating with a preshared key.

heiko

i think you should use the agrressive mode with your config and enable/configure the mobile option on the static side. On the dynamic side you can use the "user FQDN". This works as it should with 1.22

Regards
Heiko

Jonb

That is pritty much how I have it configured but is there no way to use MAIN mode.

heiko

Hello,
looks here….in the next release, i hope so,

http://forum.pfsense.org/index.php/topic,12648.0.html

Regards
Heiko