Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSec VTI not working

    Scheduled Pinned Locked Moved
    IPsec
    1
    1
    223
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • barsigorB
      barsigor
      last edited by

      Hi
      I have a problem with an IPV4 IPSEC VTI, this is the configuration

      PFSENSE 1
      IPSEC P2 (VTI):
      Local subnet: address 10.10.10.1
      Remote subnet: address 10.10.10.2

      IPSEC1 interface assigned to VTI
      gateway for IPSEC PtP (gateway 10.10.10.2)

      in the route table i have:
      10.10.10.1 link#9 UHS 18 16384 lo0
      10.10.10.2 link#12 UH 17 1400 ipsec2

      PFSENSE 2
      IPSEC P2 (VTI):
      Local subnet: address 10.10.10.2
      Remote subnet: address 10.10.10.1

      IPSEC1 interface assigned to VTI
      gateway for IPSEC PtP (gateway 10.10.10.1)

      in the route table i have:
      10.10.10.1 link#7 UH 8 1400 ipsec1
      10.10.10.2 link#2 UHS 10 16384 lo0

      I see icmp packets on the ipsec interfaces (even if i disabled keepalive) but i cannot ping from one firewall to another.

      There's anything else i can check ?
      Thanks,
      Igor

      1 Reply Last reply Reply Quote 0
      • First post
        Last post