• Replaced a Netgate PFSense FW running 1.2.3-RC3 with a new Tranquliant FW running 2.0.1.  Basically copied the same settings from one to the other during the setup process.

    IPSec Tunnel between a Barracuda NGF300 and a PFSense FW running release 2.01.
    – Connection Up and I can pass the "Majority" of traffic we send between the two locations
    -- Our point of sale system sync's data by pulling files from the master location using a dedicated TCP port
    -- When the system has a file to sync from the main office the process connects, requests the file, starts to download and then never stops.  It acts as though its pulling the data, but it never really does. 
    -- Both the ipsec and the lan firewall rules are set to allow any any from to anything.

    At this point I don't have any log data I can show you as I've had to fall back to the working Netgate running 1.2.3-RC3.

    What am I missing?  What changed between 1.2.3 and 2.0.1 that affects IPSec traffic?

  • What that sounds like is large packets not getting through the VPN, which 2.0 is actually much better with because it MSS clamps VPN traffic, eliminating that issue. Probably not the case based on that description though. It's basically impossible to say from a description, having a packet capture to analyze is the only way to know what's happening.