Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSEC site to site tunnel between Monowall and Pfsense, rekey-issues

    Scheduled Pinned Locked Moved IPsec
    3 Posts 3 Posters 640 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      andreas_lundstrom
      last edited by

      Hello

      I have som issues with an ipsec tunnel between a Monowall (version 1.33) and a pfsense (version 2.4.3-p1).
      The tunnel has the exact same configuration regarding all parameters but for some reason it seems that phase 2 stops working on the monowall side while the phase 2 side on the pfsense seems to be waiting until the next rekey.

      If I restart the tunnel or wait for the rekey on the pfsense to be done, phase 2 works again.

      Does anyone know the reason behind this or what I can try to do to solve the issue?

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        https://www.netgate.com/docs/pfsense/vpn/ipsec/ipsec-troubleshooting.html

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • K
          ktbrown
          last edited by

          andreas,

          you can try what i did on this post and see if it helps to keep your tunnels established. i suspect you have little to no traffic on this link. Don't know if it will help in your particular case... but, i don't see why it wouldn't help a bit:

          https://forum.netgate.com/topic/138571/ipsec-tunnels-stop-passing-traffic

          • ktbrown
          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.