IPSec IKEv2 Connection Succeeds but Can't Access LAN



  • Hello!

    I followed these instructions and am able to connect my macOS 10.11.5 machine to my pfSense 2.3.1-RELEASE box via IPSec and IKEv2:

    https://forum.pfsense.org/index.php?topic=106433.0

    However, I can't access any LAN addresses or get out to the internet. I do see this in my ifconfig output on the Mac:

    ipsec0: flags=8051 <up,pointopoint,running,multicast>mtu 1400
            inet 10.2.123.1 –> 10.2.123.1 netmask 0xff000000

    This /24 is indeed the one I setup as the "Virtual Address Pool" for my "Mobile Clients" config, so I'm at least getting that far.

    Anyone have any ideas on what I can check?

    Thanks!

    • spieden</up,pointopoint,running,multicast>


  • Firewall rules?? You could also check if LAN IP range is allowed/presented in the IPsec setup…



  • Aaaaand I had the firewall rule wrong. I was only allowing TCP across IPSec and then wondering why I couldn't ping anything or do DNS lookups .  ::)

    Thanks for helping me check my work.


Log in to reply