Ubiquiti UDM to pfSense PtP IPSec tunnel
-
I'm running the latest firmware and controller versions on the UDM and at the other site have my XG-7100 on 21.02.2. I have successfully created an IPSec tunnel between these two devices. However, I can't pass traffic. I ping from the SSH console to each other and other addresses on the network without a reply. I'm not using VTI so I've disabled Dynamic Routing on the UDM side. I see on the pfSense side the packets leaving out the tunnel.
It seems like a routing issue so I've added static routes to each side using the LAN GW address to test but still nothing. I'm not finding much help on the UDM side as the only successes I've seen are with the UDM Pro which seems to have entirely different OS running on it.
Anyone else been successful with something similar?
-
The 21.02.2 has some IPsec Problems, upgrade to 21.05 there are fixed.
-
@nocling Thanks for the reply. I wondered that also so I tested it on my lab firewall running 2.6 nightly and had the same problem. I have multiple other IPSec tunnels on the XG-7100 to other Netgate devices with no issue.
-
I confirmed the issue was on the UDM side. Looks like a bug. You need to add a static route on the UDM using the CLI. The static route GUI doesn't actually add the route to the routing table.