IPSEC site to site between 1.2.2 and 1.2.3

  • Is it possible to setup site to site connection between pfsense 1.2.2 and 1.2.3.

    I can't get it working.

    Cisco 827 NAT to pfsense

    Draytek 2800 series NAT (dmz host setting) to pfsense

    The settings at site1 are the same as at site2. But I can't ping between the two sites.

    Is there a significant difference between 1.2.2 and 1.2.3 so ipsec doesn't work?

  • I don't have any firewalls between my two pfSense boxes but I have a tunnel working fine between 1.2.2 and 1.2.3.

  • Nat-t was added, and I've been having issues with a tunnel to a older Draytek Vigor 2900 which I can't get working anymore with 1.2.3.

    I think the added nat-t support has triggered this. I'll need to check to make sure.

    It needs to be possible to disable it on a per-tunnel basis.

Log in to reply