IPSEC pfSense - fortigate
-
Good morning,
I have an Ipsec tunnel with a client (PfSense - Fortigate).
We are having some problems in the rekey. When the rekey occurs there is a connection break between both ends that can sometimes last several minutes.
After some changes at both ends these outages usually occur once a day and are not as noticeable.
There is another problem that we are suffering and that is, on the PfSense side the tunnel drops and is not able to reconnect:
Mar 1 12:52:07 charon 96493 09[IKE] <con2|1050> establishing IKE_SA failed, peer not responding
Mar 1 12:52:07 charon 96493 09[IKE] <con2|1050> giving up after 5 retransmitsAt the same instant on the Fortigate end the tunnel is still connected, as if the fw did not detect the tunnel drop and until the fortigate part is not restarted the connection is not re-established.
Do you know if there is a concrete/correct configuration to set up the tunnel with a Fortigate fw?
I attach configuration images of both parts:
PfSense:
Fortigate: