Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pfSense behind nat, not connection/response to Fortinet

    Scheduled Pinned Locked Moved IPsec
    2 Posts 1 Posters 213 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mbeltran_mx
      last edited by

      Hi all, I'm stuck, the VPN not connect.

      I want to migrate a Barracuda VF10 to pfSense 2.7.2. Both are virtual machines using the same network adapters (vWAN/vLAN)

      I have not access to remote VPN server (fortinet)

      On production
      -VM Barracuda VF10 v9, two network adapters (WAN/LAN) behind router (ISP modem -> router -> barracuda)
      -WAN IP 192.168.0.102 (dhcp client)
      -LAN IP 10.25.68.129
      -IPsec VPN ike2 using pre-shared key
      -remote vpn server fortinet

      On test
      -VM pfSense 2.7.2, two network adapters (WAN/LAN) behind router (ISP modem -> router -> PfSense)
      -WAN IP 192.168.0.104 (dhcp client), Also tried disconecting barracuda to use his IP 192.168.0.102
      -LAN IP 10.25.68.130
      -IPsec VPN ike2 using pre-shared key
      -remote vpn server fortinet

      My VPN configuration on Barracuda
      b8d44461-afea-485a-b829-2b7f4e55431d-image.png
      a06fae00-422f-4438-9b5e-a224dfea37c8-image.png

      Connection
      b1c8dc9a-b129-44f7-b2af-8c6bd3b7923a-image.png

      My VPN configuration on PfSense
      f27cceb1-ff4f-4b61-a8e6-f0e269cf8735-image.png

      Some tests on pfSense
      -ping to remote Fortinet respond fine
      -disabled Reserved Networks on WAN
      b856dae1-dccd-4433-82f3-d2af96548cc7-image.png

      I found that looks like I'm not getting response from the server but I don't know why, with barracuda is working
      7d515b09-de49-4698-9724-068d41606e6e-image.png

      Logs from Barracuda
      44a8fe69-62e8-4298-a6b4-ccda16ab11e4-image.png

      Logs from pfSense
      c0a9cccd-98d5-4d8e-ba96-1b0e07d397af-image.png

      M 1 Reply Last reply Reply Quote 0
      • M
        mbeltran_mx @mbeltran_mx
        last edited by

        I also noticed this

        Why the ID says "any identifier" if I established the IP in both?
        d9a3b80c-6d46-495e-abc2-20f99c573b89-image.png

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.