Only 1 IPSec VPN Tunnel Can be UP at a Time
-
Looks like one side is failing and the other doesn't know it.
You'll probably have to post the IKE and IPsec configurations from both sides.
Are you trying to get two tunnels up between the same two endpoints?
-
Funny thing is the tunnel worked until it stopped working on its own..i wanna get 3 tunnels to 3 different sites with all of them setup on Zyxel routers. I manage to get all 3 up, then they drop like flies lol
Attached are config details:
 -
That all looks OK at first glance. I would Uncheck disable re-key on the pfSense side.
And please change the PSK. :)
-
I do not understand what you are doing with the identifiers on the pfsense p1.
Normally, In that situation, I'd use DN and put in the dyndns hostname. Not sure what you are doing with the 0.0.0.0 -
Hi! Thanks for helping me out, i appreciate it! :)
I did disable re-key, but no dices..say i delete the pfsense side and re-create exactly, it will work..very weird
That all looks OK at first glance. I would Uncheck disable re-key on the pfSense side.
And please change the PSK. :)
-
Hi,
DNS or 0.0.0.0, as long as the values match on both sides, i think we ok if i'm not mistaken.
I do not understand what you are doing with the identifiers on the pfsense p1.
Normally, In that situation, I'd use DN and put in the dyndns hostname. Not sure what you are doing with the 0.0.0.0 -
Disabling NAT Traversal on all tunnels except for the one that had it enabled and was working fixed the issue, all 4 tunnels are working now…
I'm confused as to why though..
-
Any reason why tunnels like freeze and rekey every 6-7min?
-
@Sarven:
Any reason why tunnels like freeze and rekey every 6-7min?
You seem confident that it has nothing to do with using a wildcard that matches anything for your identifiers. That's all I got, so good luck.
-
Thanks Buddy
