Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPsec not connecting

    Scheduled Pinned Locked Moved IPsec
    5 Posts 3 Posters 655 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      toimagine
      last edited by

      We have a remote network with multiple tunnels configured and they are all connecting.

      I just configured another and cannot establish connection. Everything is correct in the phase1 and 2 entries.
      What might be happening is behind both gateways are the same 192.168.0.x subnets.
      How do I tell the routers who is who? And can I make this work?

      1 Reply Last reply Reply Quote 0
      • T
        toimagine
        last edited by

        I just repaired the connection but cannot pass any traffic.
        For some reason our public IP won't connect. I had to set it as our domain on the phase 1

        1 Reply Last reply Reply Quote 0
        • T
          toimagine
          last edited by

          My phase 2 entries aren't connecting. I tried adding the NAT/BINAT translation on my side since we have the same subnet as another network behind the router that I'm establishing to. And still not connecting phase2

          1 Reply Last reply Reply Quote 0
          • K
            k15
            last edited by

            Hi, I have similar issue, Did you resolve ? I couldn´t make a conection, Can you show the configuration ?

            1 Reply Last reply Reply Quote 0
            • DerelictD
              Derelict LAYER 8 Netgate
              last edited by

              If you have the same subnet as the other side, both sides have to NAT to something else, else one side will think the other side is actually on its local subnet.

              Chattanooga, Tennessee, USA
              A comprehensive network diagram is worth 10,000 words and 15 conference calls.
              DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
              Do Not Chat For Help! NO_WAN_EGRESS(TM)

              1 Reply Last reply Reply Quote 1
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.