Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPsec not working after upgrades

    Scheduled Pinned Locked Moved IPsec
    2 Posts 2 Posters 410 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      markgca
      last edited by

      i have been using pfsense for a couple years, and the IPsec vpn connection has always allowed me access from various IoS devices including iphones and ipads.
      but a couple upgrades ago that died.
      there were various patches recommended which i tried, with no luck.
      then the newest version 21.02.2 was released which i thought would fix all this, but that doesnt work either.
      to be fair, apple also had some 'upgrades' at roughly the same time, so i dont know what caused the issue, but i rely on the vpn connection for camera access, server controls, etc.

      What it does - Whenever i try to connect the ios device says "The VPN Shared Secret is incorrect".
      i have tried changing the shared secret, and just about everything else.

      any suggestions? OpenVPN works still, its just the IPsec part that is giving me trouble.

      one other observation; if i create a new V1 tunnel, the options are different than those tunnels that were created before some upgrade (that you can see if you 'edit' them). for example Mutual PSK + Xauth is no longer listed, just Mutual PSK. there are other changes as well - is that intentional or do i have some upgrade issue problem?

      just trying to figure out how to get this thing to work.

      thanks

      1 Reply Last reply Reply Quote 0
      • M
        milew
        last edited by milew

        Make a test environment on the virtual machine and check if you are able to connect. It is a waste of time to guess and look for the reason where it may lie, for example in the enabled DDoS functions on the switch.
        Alternatively, you can paste the ipsec logs onto pfsense here.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.