Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPsec tunnel not being initiated from remote network

    Scheduled Pinned Locked Moved IPsec
    3 Posts 3 Posters 2.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      Stugots
      last edited by

      I have pfSense 2.0.1 installed with a VPN tunnel configured to a remote site of ours running a Cisco VPN appliance.  The VPN tunnel works, no errors on either end and traffic flows fine in both directions.  However, after a few minutes being idle the tunnel goes down and will only come back up from my end.  If the remote (Cisco) end tries to bring up the tunnel, it will not come back up.

      Does anyone have things I can try?

      PC Engines APU2C4

      1 Reply Last reply Reply Quote 0
      • S
        Sup3rior
        last edited by

        An output of the log files from both ends when the problem persists might be helpful in troubleshooting. Is it possible to paste them here?

        1 Reply Last reply Reply Quote 0
        • C
          cmb
          last edited by

          Not uncommon with Cisco, it's relatively easy to configure them in such a way that they use a different policy when initiating than what they accept as a responder. Setting the phase 1 proposal checking to "obey" on the pfSense side generally will work around it, or alternatively fix the Cisco.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.