Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    URGENT HELP NEEDED - IpSec - Windows to pfSense

    Scheduled Pinned Locked Moved IPsec
    2 Posts 1 Posters 1.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Z
      zikmen
      last edited by

      Hi folks,

      I am stuck on that since two weeks, followed many online wizzard but nothing helps.

      I have a main site with a pfsense as default gateway. the local subnet is 10.0.10.1/8 (this way dhcp will be able to adress more than 255 ip adresses). i may be wrong using this config, i don't know but locally it works just fine.

      I can connect the tunnel with Shrew Soft VPN Client.

      Sometimes, depending on wich subnet i configure the "mobile client" pfsense page, i can achive a ping from both side.

      At that point, only the site could browse the laptop, but the laptop cannot browse the site (but can ping the machine sharing files).

      I noticed that when connected to the pfsense box and having a "ipconfig" query, the tap adapter does not have an assigned "default gateway" (as seen on the ipconfig print screen. don't know if that means something.

      Can i have some guidance here to understand where i am wrong?

      This work is directly intended to help beluga whales concerned in the "Energy East pipeline project"

      The peoples are acutally using dropbox to share files and i want to change that to a secure vpn connection between thier laptop and the main site when they are on the road.

      Thanks for helping.
      Tommy
      LAN.PNG_thumb
      LAN.PNG
      firewall.PNG
      firewall.PNG_thumb
      vpn.PNG
      vpn.PNG_thumb
      mobile-client.PNG
      mobile-client.PNG_thumb
      status.png
      status.png_thumb
      ![default gateway.png](/public/imported_attachments/1/default gateway.png)
      ![default gateway.png_thumb](/public/imported_attachments/1/default gateway.png_thumb)

      Thanks,
      Tommy

      1 Reply Last reply Reply Quote 0
      • Z
        zikmen
        last edited by

        So, since everybody had a look at my post but nobody awnsered, i did my homework myself.

        I changed some settings around my subnet (now, i understand how subnetting works) and i can connect mobile devices to the vpn through the shrewsoft vpn client.

        Each mobile client can ping workstations located on the main site and each workstation can also ping back and browse mobile computers.

        BUT  mobile clients cannot browse or ping each others.

        Mobile client 1 cannot ping mobile client 2.

        Also, when using the PfSense ping utility located in the diagnostic tab, Pfsense cannot ping mobile clients.

        Maby there is something that need to be adjusted in routing or nating to connect the "mobile client subnet" with the subnet where workstations and pfsense belongs to.

        Some more pictures attached to explain the problem. if someone can help.

        Thanks.

        Tommy

        1.PNG
        1.PNG_thumb
        2.PNG
        2.PNG_thumb
        3.PNG
        3.PNG_thumb
        4.PNG
        4.PNG_thumb
        5.PNG
        5.PNG_thumb
        6.PNG
        6.PNG_thumb
        7.PNG
        7.PNG_thumb
        8.PNG
        8.PNG_thumb
        9.PNG
        9.PNG_thumb
        10.PNG
        10.PNG_thumb
        11.PNG
        11.PNG_thumb
        12.PNG
        12.PNG_thumb
        13.PNG
        13.PNG_thumb

        Thanks,
        Tommy

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.