Time Out waiting for IP address after tunnel comes up
I am trying to use Cisco VPN client 5.0 to connect remotely to my PFsense box 1.2.1-RC2. The IPsec tunnel comes up:
racoon: INFO: IPsec-SA established: ESP 172.16.0.12->22.214.171.124 spi=202919248(0xc184d50)
And on the client I see the tunnel is established, however I can also see the vpn adaptor is trying to obtain a IP address which it never gets. Then after about 10 seconds the tunnel drops and I get these errors:
racoon: [Unknown Gateway/Dynamic]: INFO: IPsec-SA established: ESP 126.96.36.199->172.16.0.12 spi=3786973362(0xe1b8a0b2)
racoon: ERROR: such policy does not already exist: "0.0.0.0/32 0.0.0.0/0 proto=any dir=in"
But I don't see any XAuth info that should be pushed down to the client in the config. Seems like this should be easy to fix but I am out of ideas.
Thanks for any help,