VPN IPsec iphone ios7.1.2



  • :-X
    I followed this doc https://doc.pfsense.org/index.php/Mobile_IPsec_on_2.0
    but I can't get into VPN

    at log I got something like this:

    Aug 20 03:29:29 racoon: [Self]: INFO: respond new phase 1 negotiation: IP[500]<=>IP[27147]
    Aug 20 03:29:29 racoon: INFO: begin Aggressive mode.
    Aug 20 03:29:29 racoon: INFO: received broken Microsoft ID: FRAGMENTATION
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: RFC 3947
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-08
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-07
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-06
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-05
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-04
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-03
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-02
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-02
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: draft-ietf-ipsra-isakmp-xauth-06.txt
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: CISCO-UNITY
    Aug 20 03:29:29 racoon: INFO: received Vendor ID: DPD
    Aug 20 03:29:29 racoon: [IP] INFO: Selected NAT-T version: RFC 3947
    Aug 20 03:29:29 racoon: INFO: Adding remote and local NAT-D payloads.
    Aug 20 03:29:29 racoon: [IP] INFO: Hashing IP[27147] with algo #2
    Aug 20 03:29:29 racoon: [Self]: [IP] INFO: Hashing IP[500] with algo #2
    Aug 20 03:29:29 racoon: INFO: Adding xauth VID payload.
    Aug 20 03:30:19 racoon: ERROR: phase1 negotiation failed due to time up. 41cefcd6f76de40a:c89ac3d8963147d3

    I check values more thank 5 times it's should works
    also tried to change NAT-T nothing
    Thanks



  • well my mistake !
    I just reboot the box and everything OK

    thanks



  • again ! it's login 3-5 times and then same ! only if I reboot system
    but it's always works inside network using WIFI using my external dynamic dns



  • Problem solved !



  • What was the solution? I am having the exact same issue, exact same log, except rebooting pfSense does not resolve it.



  • sorry for late , but I just remove everything I did and then reboot … works great now I want to to make captive portal to control kids devices

    good luck


Log in to reply