Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Odd Tunnel Behaviour

    IPsec
    2
    2
    1074
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mrfixit2013 last edited by

      Replaced a Netgate PFSense FW running 1.2.3-RC3 with a new Tranquliant FW running 2.0.1.  Basically copied the same settings from one to the other during the setup process.

      IPSec Tunnel between a Barracuda NGF300 and a PFSense FW running release 2.01.
      – Connection Up and I can pass the "Majority" of traffic we send between the two locations
      -- Our point of sale system sync's data by pulling files from the master location using a dedicated TCP port
      -- When the system has a file to sync from the main office the process connects, requests the file, starts to download and then never stops.  It acts as though its pulling the data, but it never really does. 
      -- Both the ipsec and the lan firewall rules are set to allow any any from to anything.

      At this point I don't have any log data I can show you as I've had to fall back to the working Netgate running 1.2.3-RC3.

      What am I missing?  What changed between 1.2.3 and 2.0.1 that affects IPSec traffic?

      1 Reply Last reply Reply Quote 0
      • C
        cmb last edited by

        What that sounds like is large packets not getting through the VPN, which 2.0 is actually much better with because it MSS clamps VPN traffic, eliminating that issue. Probably not the case based on that description though. It's basically impossible to say from a description, having a packet capture to analyze is the only way to know what's happening.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy