Mobile Client help - Much appreciated - Traffic not passing

emeianoite

so by default all traffic is passed through VPN tunnel. However, i'm getting ERR_NAME_NOT_RESOLVED time outs but I can ping necessary devices.

I'm providing Virtual Address of 192.168.111.32/27
Checked DNS Default Domain: home
Checked DNS Server w/ 8.8.8.8 and 8.8.4.4

Mobile IPSEC P1:
IKEv1
INT:WAN
MutPSK+Xauth Aggressive
MYID: IP
PEER ID: xxxx
PSK: xxxx
AES128/SHA1/DH2
LT:86400s

LocalNet: LAN needed access too
NAT:NONE
PROTOCOL: ESP AES128/SHA1/NO PFS
LF: 28800s

FW-WAN
ALLOW Protocol * source * port * dest * Port 500 & 4500 GW *

FW-IP
ALLOW Protocol * source * port * dest * port * gw *

I can ping between devices but I can't reach intranet URLS

https://localIP:port/example

However,
LocalIP Ping to 192.168.111.1 pings 100%
192.168.111.1 ping to LocalIP pings 100%

What am I missing? I can pass ICMP traffic but nothing else, I would like to connect my app to my local server via local IP.

If anyone can provide help, i'd much appreciate it. pfsense 2.3.3

kolpinkb

Having the same issue here with pfSense 2.3.4 and Android 6.0.1

kolpinkb

Haha. Just got it working.  I was using manual outbound NAT rules.  Switched back to automatic and then back to manual to pfSense would regenerate NAT rules including those for IPSEC.

All traffic flows now!