Site-to-site VPN pfSense1.2.2 to Netgear routeur firewall ADSL DG834



  • I do not understand why my ipsec is not stable  :'(

    this is my pfsense log :

    racoon: [MAIA]: INFO: IPsec-SA established: ESP 212.51.172.214[0]->80.14.153.251[0] spi=3068140526(0xb6e01bee)
    Oct 22 17:06:42 racoon: [MAIA]: INFO: IPsec-SA established: ESP 80.14.153.251[0]->212.51.172.214[0] spi=107587375(0x669a72f)
    Oct 22 17:06:41 racoon: [MAIA]: INFO: respond new phase 2 negotiation: 212.51.172.214[0]<=>80.14.153.251[0]
    Oct 22 17:06:41 racoon: [MAIA]: INFO: ISAKMP-SA established 212.51.172.214[500]-80.14.153.251[500] spi:ed4d4e6e9fe92f26:e6c89a8e7d5f8142
    Oct 22 17:06:41 racoon: [MAIA]: INFO: ISAKMP-SA deleted 212.51.172.214[500]-80.14.153.251[500] spi:0ccceea419740991:d432cca09dc0e219
    Oct 22 17:06:41 racoon: INFO: received Vendor ID: DPD
    Oct 22 17:06:41 racoon: INFO: begin Identity Protection mode.
    Oct 22 17:06:41 racoon: [MAIA]: INFO: respond new phase 1 negotiation: 212.51.172.214[500]<=>80.14.153.251[500]
    Oct 22 17:06:40 racoon: [MAIA]: INFO: ISAKMP-SA expired 212.51.172.214[500]-80.14.153.251[500] spi:0ccceea419740991:d432cca09dc0e219

    this is my netgear log

    Thu, 2009-10-22 17:06:03 - [cg43] received Delete SA payload: deleting IPSEC State #190
    Thu, 2009-10-22 17:06:13 - [cg43] sent QI2, IPsec SA established
    Thu, 2009-10-22 17:06:40 - [cg43] terminating SAs using this connection
    Thu, 2009-10-22 17:06:41 - [cg43] initiating Main Mode
    Thu, 2009-10-22 17:06:41 - [cg43] ISAKMP SA established
    Thu, 2009-10-22 17:06:41 - [cg43] sent QI2, IPsec SA established
    Thu, 2009-10-22 17:07:57 - [cg43] terminating SAs using this connection
    Thu, 2009-10-22 17:07:57 - [cg43] initiating Main Mode
    Thu, 2009-10-22 17:07:58 - [cg43] ISAKMP SA established
    Thu, 2009-10-22 17:07:58 - [cg43] sent QI2, IPsec SA established
    Thu, 2009-10-22 17:07:58 - [cg43] sent QI2, IPsec SA established
    Thu, 2009-10-22 17:07:59 - [cg43] received Delete SA payload: deleting IPSEC State #196
    Thu, 2009-10-22 17:07:59 - [cg43] sent QI2, IPsec SA established
    Thu, 2009-10-22 17:08:00 - [cg43] received Delete SA payload: deleting IPSEC State #197
    Thu, 2009-10-22 17:08:00 - [cg43] sent QI2, IPsec SA established
    Thu, 2009-10-22 17:08:01 - [cg43] received Delete SA payload: deleting IPSEC State #198
    Thu, 2009-10-22 17:08:02 - [cg43] sent QI2, IPsec SA established
    Thu, 2009-10-22 17:08:02 - [cg43] received Delete SA payload: deleting IPSEC State #199
    Thu, 2009-10-22 17:08:03 - [cg43] sent QI2, IPsec SA established
    Thu, 2009-10-22 17:08:04 - [cg43] received Delete SA payload: deleting IPSEC State #200
    Thu, 2009-10-22 17:08:04 - [cg43] sent QI2, IPsec SA established
    Thu, 2009-10-22 17:08:05 - [cg43] received Delete SA payload: deleting IPSEC State #201
    Thu, 2009-10-22 17:08:06 - [cg43] sent QI2, IPsec SA established
    Thu, 2009-10-22 17:08:06 - [cg43] received Delete SA payload:

    Someone can help me please ?



  • If you're still having an issue, please post more details of your config.



  • IPSec Sucks!  >:(
    Been fighting with it at my locations for well over a week and I'm about give put some c4 on the box and call it good.



  • It is most likely a configuration issue with your policy settings. Please post screen shots of your config on both sides and make sure you are running 1.2.3-rc3


Log in to reply