Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Login

    Problem with IPSec VPN

    2.0-RC Snapshot Feedback and Problems - RETIRED
    1
    1
    2.4k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      galphanet
      last edited by

      Hello,

      I'm going crazy with IPSec…

      I have 2 pfSense boxes (one 1.2 and one 2.0RC3) and they won't connect together.
      As I've read lot of posts about IPSec, I'm sure my parameters are correct.

      I've tried with aggressive mode for now.

      On the 2.0RC3 I can't delete IPSec rules, the delete button does nothing.

      There are the error messages from the 1.2 :

      
[code]racoon: ERROR: phase1 negotiation failed due to time up. 0be5062997027b2b:0000000000000000
Aug 6 13:50:53	racoon: INFO: delete phase 2 handler.
Aug 6 13:50:53	racoon: []: ERROR: phase2 negotiation failed due to time up waiting for phase1\. ESP yyy[0]->xxx[0]
Aug 6 13:50:21	racoon: INFO: begin Aggressive mode.
Aug 6 13:50:21	racoon: []: INFO: initiate new phase 1 negotiation: xxx[500]<=>yyy[500]
Aug 6 13:50:21	racoon: []: INFO: IPsec-SA request for yyy queued due to no phase1 found.
Aug 6 13:47:40	racoon: INFO: delete phase 2 handler.
Aug 6 13:47:40	racoon: []: ERROR: phase2 negotiation failed due to time up waiting for phase1\. ESP yyy[0]->xxx[0]
Aug 6 13:47:24	racoon: ERROR: phase1 negotiation failed due to time up. f8f5264823ca3c9a:0000000000000000
Aug 6 13:47:08	racoon: []: INFO: phase2 sa deleted xxx-yyy
Aug 6 13:47:07	racoon: INFO: request for establishing IPsec-SA was queued due to no phase1 found.
Aug 6 13:47:07	racoon: []: INFO: phase2 sa expired xxx-yyy
Aug 6 13:46:56	racoon: []: INFO: phase2 sa deleted xxx-yyy
Aug 6 13:46:55	racoon: INFO: request for establishing IPsec-SA was queued due to no phase1 found.
Aug 6 13:46:55	racoon: []: INFO: phase2 sa expired xxx-yyy
Aug 6 13:46:47	racoon: []: INFO: phase2 sa deleted xxx-yyy
Aug 6 13:46:46	racoon: INFO: request for establishing IPsec-SA was queued due to no phase1 found.
Aug 6 13:46:46	racoon: []: INFO: phase2 sa expired xxx-yyy
Aug 6 13:46:35	racoon: []: INFO: phase2 sa deleted xxx-yyy
Aug 6 13:46:34	racoon: INFO: begin Aggressive mode.[/code]

And on the 2.0RC3

[code]racoon: ERROR: phase1 negotiation failed due to time up. c6b1c210ebc770f9:0000000000000000
Aug 6 13:52:42	racoon: INFO: delete phase 2 handler.
Aug 6 13:52:42	racoon: []: [yyy] ERROR: phase2 negotiation failed due to time up waiting for phase1 [Remote Side not responding]. ESP yyy[0]->xxx[0]
Aug 6 13:52:35	racoon: ERROR: phase1 negotiation failed due to time up. 5e2799acb008274d:0000000000000000
Aug 6 13:52:17	racoon: INFO: delete phase 2 handler.[/code]

But between 2 m0n0wall boxes it work perfectly...

Thanks for your help !
      1 Reply Last reply Reply Quote 0
      • First post
        Last post