IPSec IKEv2 Connection Succeeds but Can't Access LAN

  • Hello!

    I followed these instructions and am able to connect my macOS 10.11.5 machine to my pfSense 2.3.1-RELEASE box via IPSec and IKEv2:


    However, I can't access any LAN addresses or get out to the internet. I do see this in my ifconfig output on the Mac:

    ipsec0: flags=8051 <up,pointopoint,running,multicast>mtu 1400
            inet –> netmask 0xff000000

    This /24 is indeed the one I setup as the "Virtual Address Pool" for my "Mobile Clients" config, so I'm at least getting that far.

    Anyone have any ideas on what I can check?


    • spieden</up,pointopoint,running,multicast>

  • Firewall rules?? You could also check if LAN IP range is allowed/presented in the IPsec setup…

  • Aaaaand I had the firewall rule wrong. I was only allowing TCP across IPSec and then wondering why I couldn't ping anything or do DNS lookups .  ::)

    Thanks for helping me check my work.

Log in to reply