Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    ERROR: failed to pre-process packet.

    IPsec
    1
    1
    2456
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      juan last edited by

      I have the following problem with pfsense 1.2beta:

      With a configuration of several IPSECs TUNNELS running ok without problems, if i change one of my tunnels from WAN the GATEWAY to WAN2/OPT1 GATEWAY all the following TUNNELS in the config list don't connect.

      Config before WAN2/OPT1

      Status  Local net Remote net Interface Remote gw P1 mode P1 Enc. Algo P1 Hash Algo Description 
      ok LAN 192.168.8.0/24  WAN x.x.x.x  aggressive  3DES  MD5  SITE8
      ok LAN 192.168.6.0/24  WAN x.x.x.x  aggressive  3DES  MD5  SITE6     
      ok LAN 192.168.13.0/24  WAN x.x.x.x  aggressive  3DES  MD5  SITE13     
      ok LAN 192.168.62.0/24  WAN x.x.x.x  aggressive  3DES  MD5  SITE62     
      ok LAN 192.168.53.0/24  WAN x.x.x.x  aggressive  3DES  MD5  SITE53     
      ok LAN 192.168.68.0/24  WAN x.x.x.x  aggressive  3DES  MD5  SITE68

      Config after WAN2/OPT1

      Status  Local net Remote net Interface Remote gw P1 mode P1 Enc. Algo P1 Hash Algo Description 
      ok LAN 192.168.8.0/24  WAN  x.x.x.x  aggressive  3DES  MD5  SITE8
      ok LAN 192.168.6.0/24  WAN  x.x.x.x  aggressive  3DES  MD5  SITE6     
      err LAN 192.168.13.0/24  WAN2 x.x.x.x  aggressive  3DES  MD5  SITE13     
      err LAN 192.168.62.0/24  WAN  x.x.x.x  aggressive  3DES  MD5  SITE62     
      err LAN 192.168.53.0/24  WAN  x.x.x.x  aggressive  3DES  MD5  SITE53     
      err LAN 192.168.68.0/24  WAN  x.x.x.x  aggressive  3DES  MD5  SITE68

      IPSEC LOG ERROR:

      May 17 17:18:23 racoon: ERROR: failed to pre-process packet.
      May 17 17:18:23 racoon: ERROR: failed to get proposal for responder.
      May 17 17:18:23 racoon: ERROR: no policy found: 192.168.68.0/24[0] 172.26.0.0/24[0] proto=any dir=in
      May 17 17:18:23 racoon: INFO: respond new phase 2 negotiation: wan.wan.wan.wan[500]<=>SITE68[500]
      May 17 17:18:21 racoon: ERROR: failed to pre-process packet.
      May 17 17:18:21 racoon: ERROR: failed to get proposal for responder.
      May 17 17:18:21 racoon: ERROR: no policy found: 192.168.53.0/24[0] 172.26.0.0/24[0] proto=any dir=in
      May 17 17:18:21 racoon: INFO: respond new phase 2 negotiation: wan.wan.wan.wan[500]<=>SITE53[500]
      May 17 17:18:20 racoon: ERROR: failed to pre-process packet.
      May 17 17:18:20 racoon: ERROR: failed to get proposal for responder.
      May 17 17:18:20 racoon: ERROR: no policy found: 192.168.62.0/24[0] 172.26.0.0/24[0] proto=any dir=in
      May 17 17:18:20 racoon: INFO: respond new phase 2 negotiation: wan.wan.wan.wan[500]<=>SITE62[500]
      May 17 17:18:18 racoon: ERROR: failed to pre-process packet.
      May 17 17:18:18 racoon: ERROR: failed to get proposal for responder.
      May 17 17:18:18 racoon: ERROR: no policy found: 192.168.13.0/24[0] 172.26.0.0/24[0] proto=any dir=in
      May 17 17:18:18 racoon: INFO: respond new phase 2 negotiation: wan.wan.wan.wan[500]<=>SITE13[500]

      Help!

      1 Reply Last reply Reply Quote 0
      • First post
        Last post