Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSec VPN - Zyxel to pfSense works but pfSense to Zyxel fails

    Scheduled Pinned Locked Moved IPsec
    3 Posts 1 Posters 1.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      TriStarGod
      last edited by

      I just setup my first pfSense firewall.
      I'm setting up my VPNs. So far 2 out of 3 VPNs work (3 different firewalls). However, I have issues with third one.

      When zyxel firewall attempts to connect to pfSense, it works. However, when the pfSense attempts to connect to zyxel, it fails with error "[SA] : No proposal chosen" . There are no other errors on either the pfSense or Zyxel logs. It such a weird error.

      1 Reply Last reply Reply Quote 0
      • T
        TriStarGod
        last edited by

        Update 1:
        Something I did notice was that when I attempted to connect on the pfSense side (Status>IPsec>Overview), local and remote id would report as Any Identifier even though they are set to a specific identifier. Not sure if it makes a difference. I'll test by setting 0.0.0.0 for both identifiers to see it makes any difference.

        1 Reply Last reply Reply Quote 0
        • T
          TriStarGod
          last edited by

          Update #2
          This issue is still unresolved. However, I was able to properly configure the Zyxel to auto connect (its incoming VPN) whenever it determines that a connection is required. I would still appreciate if any suggestions can offered on why the pfsense can't connect to the zyxel but the zyxel can connect to the pfsense.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.