IPSEC Permission? issue…
-
Push. No Idea? Its really anoying to have a suddenly crashing tunnel :-(
-
Anyone who is having this problem running snort with blocking?
Probably the endpoint getting blocked for some reason.
-
Good Morning,
thanks for your answer. Actually i am using Snort. I will check the block list next time. Thank you for this idea.
Kind regards
-
@derelict Perfect! Thanks! Snort was blocking the VPN Gateway. I whitelisted SID 122:23. It was triggered everytime i was playing Age of Empires II HD.
-
Hello,
I do have this problem to right now, tunnel has work perfect for months and I havent do any changes.
I did tried to update to the newest pfsense without success. Tunnel just died after a few hours.
It always came back up after I reboot firewall. No luck with restart ipsec service.I have this in my log.
Nov 4 08:07:29 charon 04[NET] error writing to socket: Permission deniedKind regards
-
Again, look to see if the endpoint is being blocked by snort.
-
I still have problem with one of my tunnels.
I have 3 tunnels total and only one is failing with error writing socket. I tried to remake the tunnel on both side and it was the same thing. It work for 2h and then tunnel crash. (site 3)One of the 2 tunnels that is working is between 2 pfsense boxen like this one that is failing and the other one is unifi.
on my unifi box the tunnel to site 3 its still working. -
Are. You. Running. Snort/Suricata?
Did. You. Check. Snort/Suricata?
-
@derelict Hi thanks for answer. No I do not run anything that isnt in standard configuration for pfsense. I only installed it and configure my 2 network card and then 3 ipsec tunnels.
-
Well, permission denied there is IPsec being forced out of that interface to or from an address that is denied by policy. So I would have a good look at all of your firewall rules for that source or destination. If you have changed from permission denied to some other problem, you need to make that more clear and probably start a new thread. In fact, since you are talking about a completely new problem (since you are not running IDS/IPS) I'd just start a new thread with details specific to your problem.
-
@derelict but I havent changed anything with my policy and if I reboot my firewall all 3 tunnels come up with without any problem. And then my third tunnel suddenly die. All my 3 tunnels go out on same interface (WAN).
-
Start your own thread.