Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    L2TP/IPsec Connects but can't hit LAN devices

    Scheduled Pinned Locked Moved IPsec
    3 Posts 1 Posters 980 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      CiscoKid85
      last edited by

      I've setup VPN according to the following guide:

      https://doc.pfsense.org/index.php/L2TP/IPsec#Firewall_traffic_blocked_outbound

      I'm using an iPhone 8.1 for testing.. While I can successfully get my phone to connect and establish the tunnel, I can't get it to pass any traffic to the LAN or WAN via the VPN connection.

      I have any -> any rules added for IPv4 on the L2TP VPN and the IPsec rules tab. I also added an outbound rule under floating so that the client could get out.. Still can't seem to get this working. I keep seeing the attached in the logs.

      It's almost like it's skipping the rules. Has anyone seen this before? Any suggestions?

      VPN_logs.PNG
      VPN_logs.PNG_thumb

      1 Reply Last reply Reply Quote 0
      • C
        CiscoKid85
        last edited by

        The oddest thing is that external DNS lookups seem to work (but not internal).

        VPN_DNS.PNG
        VPN_DNS.PNG_thumb

        1 Reply Last reply Reply Quote 0
        • C
          CiscoKid85
          last edited by

          I figured it out.. My floating rules were mis-matched for the L2TP interface.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.