Time Out waiting for IP address after tunnel comes up



  • Hello,

    I am trying to use Cisco VPN client 5.0 to connect remotely to my PFsense box 1.2.1-RC2. The IPsec tunnel comes up:

    racoon: INFO: IPsec-SA established: ESP 172.16.0.12[0]->80.38.128.111[0] spi=202919248(0xc184d50)

    And on the client I see the tunnel is established, however I can also see the vpn adaptor is trying to obtain a IP address which it never gets. Then after about 10 seconds the tunnel drops and I get these errors:

    racoon: [Unknown Gateway/Dynamic]: INFO: IPsec-SA established: ESP 80.38.128.111[0]->172.16.0.12[0] spi=3786973362(0xe1b8a0b2)

    followed by:

    racoon: ERROR: such policy does not already exist: "0.0.0.0/32[0] 0.0.0.0/0[0] proto=any dir=in"

    But I don't see any XAuth info that should be pushed down to the client in the config. Seems like this should be easy to fix but I am out of ideas.

    Thanks for any help,

    Pedro


Log in to reply