Pfsense – draytek ipsec tunnel



  • Hi all

    I am tryng to setup a lan to lan ipsec tunnel between pfsense and a Draytek router (vigor 2800), I've tryed  a lot of security and hash method but the best that I obtain is this:
    (using Aggressive / 3des / md5 /g1)

    Apr 9 12:07:25 racoon: INFO: respond new phase 1 negotiation: ..226.196[500]<=>..57.106[500]
    Apr 9 12:07:25 racoon: INFO: begin Aggressive mode.
    Apr 9 12:07:25 racoon: NOTIFY: couldn't find the proper pskey, try to get one by the peer's address.
    Apr 9 12:07:26 racoon: INFO: ISAKMP-SA established ..226.196[500]-..57.106[500] spi:e4f2f97cbe5faf57:240ac8f9fa9b12be
    Apr 9 12:07:26 racoon: INFO: respond new phase 2 negotiation: ..226.196[500]<=>..57.106[500]
    Apr 9 12:07:26 racoon: ERROR: failed to get sainfo.
    Apr 9 12:07:26 racoon: ERROR: failed to get sainfo.
    Apr 9 12:07:26 racoon: ERROR: failed to pre-process packet.
    Apr 9 12:07:29 racoon: INFO: respond new phase 2 negotiation: ..226.196[500]<=>..57.106[500]
    Apr 9 12:07:29 racoon: ERROR: failed to get sainfo.
    Apr 9 12:07:29 racoon: ERROR: failed to get sainfo.
    Apr 9 12:07:29 racoon: ERROR: failed to pre-process packet.

    Instead from the Drytek router I have:
    04-09-2007 12:12:29 Local1.Notice my.router Jan  1 03:47:09 Vigor: Start IKE Quick Mode to ..226.196
    04-09-2007 12:12:29 Local1.Notice my.router Jan  1 03:47:09 Vigor: sent AI2, ISAKMP SA established with ..226.196
    04-09-2007 12:12:28 Local1.Notice my.router Jan  1 03:47:08 Vigor: Initiating IKE Aggressive Mode to ..226.196

    I don't know how to proceed, have someone some tips or idea ?
    thanks very much

    Giacomo
    –--------
    sono fuori dal tunnel le le del divertimento......


Log in to reply