Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Random port during VPN IPsec communication

    IPsec
    1
    1
    300
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      kircios
      last edited by kircios

      Hello !

      I apologize in advance for my English, which I think is average.

      When we have done the maintenance of a server, we encountered a problem with our ipsec VPN.
      I'm posting a topic here because I really don't know how to correct the problem.
      The diagram of our network is as follows:
      ca124988-524b-4999-8e2e-006d1f7cf6c8-image.png
      On the PFSense router, we have a VPN ipsec which is connected with one of our customer.
      During 2 years this vpn worked well. But after a restart of the host server, the tunnel has been cut.

      The screenshot attached shows us the current status of the VPN.
      7aa5c716-1a40-4969-9d77-7a09ece1ce11-image.png
      We can see that the vpn is established but, because of this problem, we can see that in the screenshot, we don't receive any packets.

      We have identified 1 cause. Indeed the exchange for the vpn is done from port 500 to port 500. However the customer sees us arrive with a random port that changes with each connection request. However, in the pfsense logs, I can clearly see that the communication takes place with the port 500.
      dc1091ed-c296-4634-94b9-ef211c7a23c4-image.png

      To try to correct this problem we tried to reinstall an old version of the router which was functional, but the problem persists.

      I don't know if you've encountered this problem before, but if you had any ideas it could help me enormously.

      Don't hesitate to ask me if you need any other information and thank you in advance for your help.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.