Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Ipsec site to site problem web server

    Scheduled Pinned Locked Moved IPsec
    8 Posts 3 Posters 668 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      runaway19
      last edited by

      I have a tunnel ipsec, where the remote network needs access to a web server, I can verify the rules and I made a telnet from the remote local network to the web server responds but entering by browser (chrome, mozilla, etc) don't respond.

      This is my version firewall 2.3.4-RELEASE (amd64)
      FreeBSD 10.3-RELEASE-p19

      Any ideas?

      V 1 Reply Last reply Reply Quote 0
      • V
        viragomann @runaway19
        last edited by

        @runaway19 said in Ipsec site to site problem web server:

        but entering by browser (chrome, mozilla, etc) don't respond.

        By the web servers public host name?
        You have to add a DNS override on the remote site for this host name, pointing to its local IP address.

        1 Reply Last reply Reply Quote 0
        • R
          runaway19
          last edited by

          @viragomann said in Ipsec site to site problem web server:

          By the web servers public host name?
          You have to add a DNS override on the remote site for this host name, pointing to its local IP address.

          Thanks for your answer. The web server network is internal, not public.

          V 1 Reply Last reply Reply Quote 0
          • R
            runaway19
            last edited by

            nobody knows?

            K 1 Reply Last reply Reply Quote 0
            • K
              Konstanti @runaway19
              last edited by

              @runaway19

              Hey
              try reducing the MSS value

              VPN/IPsec/Advanced Settings

              for example

              b7dd8fa3-2cde-42f4-bc1b-eb2da6a6315b-image.png

              1 Reply Last reply Reply Quote 0
              • R
                runaway19
                last edited by

                Apply that change and the problem still persists.

                K 1 Reply Last reply Reply Quote 0
                • K
                  Konstanti @runaway19
                  last edited by

                  @runaway19
                  Try to start tcpdump during the connection and show what is happening at this moment

                  1 Reply Last reply Reply Quote 0
                  • V
                    viragomann @runaway19
                    last edited by

                    @runaway19 said in Ipsec site to site problem web server:

                    The web server network is internal, not public.

                    My question was, how do you try to access it?
                    By its public hostname or by its public IP or by its internal hostname or IP?

                    1 Reply Last reply Reply Quote 0
                    • First post
                      Last post
                    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.