IPsec mobile client tunnel active, but no traffic to lan possible

lblokland · Aug 21, 2009, 7:55 PM

Hi,

I gave up on the PPTP untill there is a fix, so now i entered the land of ipsec.

After a few hours I managed to set up a tunnel with the Fortinet client using a fixed ip but i am unable to reach anything on the lan but the pfsense box itself.

Can anyone try to help me out here?

Thanks,

Leon

fastcon68 · Aug 21, 2009, 7:58 PM

make sure that you have ipsec rules setup to allow traffic to pass. Sounds like you are 99% there.
RC

lblokland · Aug 22, 2009, 6:09 AM

That's what I thought , but I'm not sure what IPSec rules to create.
Is there some example available?

Thanks.
Leon

lblokland · Aug 22, 2009, 7:00 AM

OK, solved.
I had a mismatch in the phase 2 setup….the PFS keygroup was not exactly the same on both ends.

Now I believe routing is ok, next thing is setting up dhcp relay.

Thanks for the support!

Leon