IPsec invalid payload
-
I followed this guide to set-up IP-sec VPN: https://docs.netgate.com/pfsense/en/latest/recipes/ipsec-mobile-ikev2-eap-mschapv2.html but when I try to connect I always get "received invalid payload". See logs for all details. Any ideas how to fix this please? IPseclogs.txt
-
Hi
you have problems in the phase-2 settings
May 28 18:55:53 charon 36179 06[IKE] <con-mobile|4> no acceptable proposal found May 28 18:55:53 charon 36179 06[IKE] <con-mobile|4> failed to establish CHILD_SA, keeping IKE_SAKeyword: “failed to establish CHILD_SA, keeping IKE_SA” Probable Causes: IPsec algorithm is mismatched Suggestions: Verify that all IPsec algorithm parameters (i.e., Authentication/DH Groups/Encryption) match on both VPN configuration -
@konstanti You are right. I matched the settings and now VPN is working. However cannot go to the URL of the Firewall. Any ideas?
-
it is necessary to check the firewall rules on the ipsec interface
by default , everything is blocked there
-
@konstanti These are the rules. I'm using port 1600 for the GUI. Is there anything wrong? In IPsec I have added the VPN network of 10.3.200.0/24
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.