Endian to pfsense site to site



  • Hi,

    Just setup a pfsense box, looking at replacing some endian firewalls with pfsense.

    I can't for the life of me get the VPN going however.

    On the PF box i have setup phase 1 + 2 as it should be. everything checks out range ip's etc.

    Getting the following errors i've picked out from logs. I've tried stopping and restarting.

    PF
    INFO: request for establishing IPsec-SA was queued due to no phase1 found.
    ERROR: phase2 negotiation failed due to time up waiting for phase1 [Remote Side not responding]
    racoon: ERROR: ignore information because the message is too short - 60 byte(s).
    racoon: INFO: unsupported PF_KEY message REGISTER

    Endian
    packet from x.x.x.x.:500: initial Main Mode message received on x.x.x.x.x:500 but no connection has been authorized with policy=PSK
    STATE_MAIN_R1: sent MR1, expecting MI2



  • ::) well after giving up and installing a few packages i rebooted again and the tunnel is now up…. So not entirely sure what happened.

    Just need to work out how to pass the traffic now  :D



  • Interestingly I am also getting this error when attempted to setup tunnels and 2 new sites with 2 separate pfSense 2.0 boxes and Watchguard / Fortinet endpoints. What would you say rectified this issue?



  • @Navillus:

    Interestingly I am also getting this error when attempted to setup tunnels and 2 new sites with 2 separate pfSense 2.0 boxes and Watchguard / Fortinet endpoints.

    which? Start a new thread describing your issue please, it's not the same as this one. Locking it to prevent further hijacking since it's resolved.


Locked