Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSEC tunnel not reliable

    Scheduled Pinned Locked Moved IPsec
    3 Posts 2 Posters 747 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G Offline
      gteley
      last edited by

      My IPSEC tunnel between 2 pfSense 2.3.3 boxes works.
      I can ping the other site, RDP into some servers at the other side. Life looks good.
      But…
      One Win2012R2 server keeps complaining with 'Internal error' when starting a TS session. Others do not.
      NFS traffic keeps failing.
      File transfers often fail.

      The logs show no error whatsoever. All seems good.
      All these problems do not occur when accessing the remote site with a mobile IPSEC connection (agressive mode, AES256, SHA1, DH2)

      Can it be that some kind of encryption interferes with the main mode IPSEC tunnel (AES256, SHA256, DH5)?

      1 Reply Last reply Reply Quote 0
      • T Offline
        TeknikL
        last edited by

        Did you clamp the MSS at 1300 under advanced settings on both sides? this helps a lot with RDP and other finicky protocols. and increases speed a lot.

        1 Reply Last reply Reply Quote 0
        • G Offline
          gteley
          last edited by

          That worked! Thanks :)

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.