This is what I think is relevant from the logs.

Jun 5 13:47:04 	charon 		10[ENC] <con1|364>generating CREATE_CHILD_SA response 29 [ N(NO_PROP) ]
Jun 5 13:47:04 	charon 		10[IKE] <con1|364>failed to establish CHILD_SA, keeping IKE_SA
Jun 5 13:47:04 	charon 		10[IKE] <con1|364>no acceptable proposal found
Jun 5 13:47:04 	charon 		10[CFG] <con1|364>configured proposals: ESP:AES_CBC_256/HMAC_SHA1_96/MODP_1024/NO_EXT_SEQ
Jun 5 13:47:04 	charon 		10[CFG] <con1|364>received proposals: ESP:AES_CBC_256/HMAC_SHA1_96/NO_EXT_SEQ, ESP:3DES_CBC/HMAC_SHA1_96/NO_EXT_SEQ
Jun 5 13:47:04 	charon 		10[ENC] <con1|364>parsed CREATE_CHILD_SA request 29 [ SA No TSi TSr ]</con1|364></con1|364></con1|364></con1|364></con1|364></con1|364> 

Being new to this I took a guess that I'd configured MODP_1024 on pfSense but my phone didn't support this:

pfSense: ESP:AES_CBC_256/HMAC_SHA1_96/MODP_1024/NO_EXT_SEQ
Phone: ESP:AES_CBC_256/HMAC_SHA1_96/NO_EXT_SEQ

I only had two values in my setup that looked like they were 1024 and realised I had read the guide wrong and enabled or left at default PFS. Disabling it seems to have resolved this.