Site2Site IPsec between 2 pfSense not working
-
Hey there,
I've been struggling with my IPsec connection all day long.
As far as I can tell, Phase 1 can't even be established.
So far I've read the troubleshooting and some forum posts. But nothing worked.
I even tried to set the Peer/Local-ID to a DN, didn't work.Every pfSense has got it's own dedicated public IP.
The LAN's "inside" each pfSense is just working fine.Site A and Site B are configured the exact same way, except for the Remote IP's.
Site A log:
Site B log:
Site A Phase 1 config:
Site B Phase 1 config:
I have no more idea, why the log sais, AUTH_FAILED.
Thanks ahead for any help.
-
I just posted it because maybe it will help someone else in the future.
My problem was my PSK.
MAC stands for Message Authentication Code. Essentially means you messed up your PSK's.I don't see any way to mark this as solved.
So consider this as solved with this comment. -
@lukasn said in Site2Site IPsec between 2 pfSense not working:
I just posted it because maybe it will help someone else in the future.
My problem was my PSK.
MAC stands for Message Authentication Code. Essentially means you messed up your PSK's.I don't see any way to mark this as solved.
So consider this as solved with this comment.So you did not have the same PSK on both sides or something?
-
@kevindd992002
Yes, exactly.
I was sure to 100% that I got it corrent on both sides, but well... wasn't the case here.