Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Ipsec fortigate - pfsense responder only

    IPsec
    1
    1
    995
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      dome89 last edited by

      Hello everybody!

      At different customers I have installed Fortigate Firewalls with dual wan and now I must connect them in a server farm with PfSense 2.3.1 using a redundant vpn ipsec.
      This is the scenario:

      customer office: fortigate with two wan connected                  server farm: pfsense with a single wan

      On the fortigate I've created 2 vpn (1 for every wan) that have both the  static ip of the pfsense wan as remote gateway  and regulated through static route policies.
      On fortigate  vpn correctly works, respected the static planned route.
      The problem is on pfsense: I've created 2 separate vpn with remote gateways corrisponding to the two adsl of the customer.
      In the advanced options of the phase 1 i have setted the flag on "Responder Only". I expect me therefore that the pfsense only respond to the connection request  from the fortigate but doesn't happen so, since the Pfsense contemporarily activates the two tunnels vpn toward the fortigate.
      From the fortigate to the pfsense everything correctly works and there's data exchange  through the tunnel while justly from the pfsense to the fortigate no, because there are active in the same instant two tunnels toward a same subnet. (if I disable one of the two vpn on the pfsense data pass correctly).

      Any recommendations as to what I could try?

      Thanks

      1 Reply Last reply Reply Quote 0
      • First post
        Last post

      Products

      • Platform Overview
      • TNSR
      • pfSense
      • Appliances

      Services

      • Training
      • Professional Services

      Support

      • Subscription Plans
      • Contact Support
      • Product Lifecycle
      • Documentation

      News

      • Media Coverage
      • Press
      • Events

      Resources

      • Blog
      • FAQ
      • Find a Partner
      • Resource Library
      • Security Information

      Company

      • About Us
      • Careers
      • Partners
      • Contact Us
      • Legal
      Our Mission

      We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

      Subscribe to our Newsletter

      Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

      © 2021 Rubicon Communications, LLC | Privacy Policy