Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Phase 1 and 2 connecting but not passing traffic from site A and B. Yet i can create a third tunnel to both sites from my end using the exact same settings and it works.

    Scheduled Pinned Locked Moved IPsec
    3 Posts 2 Posters 258 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tweek011
      last edited by

      Yesterday at random a site to site tunnel stop working even though it shows connected. This was originally a Cisco ASA at Stie A and a Sophos at Site B (cloud server hosting company). The tunnels were up.

      So after some troubleshooting i decided to replace the Cisco with Pfsense loaded on a system until i could put in a order for a proper Netgate Appliance - As least allowing them to get back up and function till then. Simply export and import the config later.

      Well same thing occurred - Sophos support got involved and was having issues determining why port 500 and 4500 were not passing traffic.

      So the vendor at Site B spun up a Pfsense instance and again the same issue as before.

      I created a tunnel to both locations using the same settings with a different preshare key from my network and i am able to pass traffic back and forth with Site A and Site B.

      Vendor has switched the Public IP's on the cloud servers over to another block - same thing again. The tunnel establishes but does not pass any traffic. I've tried a number of different tunnel configuration.

      Both side can ping 1.1.1.1 and other locations with internet access from CMD and console.

      Here are a couple screen shots of the settings and IPSEC logs!

      Ping-to-SiteA.jpg Ping-to-SIteB.jpg Site-A.jpg Site-B.jpg

      T 1 Reply Last reply Reply Quote 0
      • T
        tweek011 @tweek011
        last edited by

        Forgot to mention Site A uses Cox Cable and Site B uses Comcast.

        M 1 Reply Last reply Reply Quote 0
        • M
          michmoor LAYER 8 Rebel Alliance @tweek011
          last edited by

          This post is deleted!
          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.