Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Problem establishing VPN

    Scheduled Pinned Locked Moved IPsec
    4 Posts 3 Posters 974 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      frf
      last edited by

      After the last firmware update(2.2), the IPsec started to behave erratically and we cannot establish a VPN from site A to site B (although we can to site C).
      We have tried to replicate the configurations to site B but it didnt work.

      Our setup is the following:
      Firewall at site A is the pfSense 2.2 FreeBSD 10.1 with IP is 8x.xxx.xxx.xxx
      Firewall at site B is a Cisco IP is 192.168.1.250, behind the ISP router with IP 3x.xxx.xxx.xxx

      The logs and configurations used are in the following screenshots.

      Thank you in advance
      log.PNG
      log.PNG_thumb
      log1.PNG
      log1.PNG_thumb
      log3.PNG
      log3.PNG_thumb
      log4.PNG
      log4.PNG_thumb
      logcisco.PNG
      logcisco.PNG_thumb

      1 Reply Last reply Reply Quote 0
      • E
        eri--
        last edited by

        Are you behind NAT?

        1 Reply Last reply Reply Quote 0
        • F
          frf
          last edited by

          Site A isnt, site B is but traffic is forwarded to the Cisco firewall.

          1 Reply Last reply Reply Quote 0
          • S
            stegbth
            last edited by

            Hi

            i am currently fighting with a similar problem.

            I have an IPsec site-to-site tunnel with x509 authentication.

            client(192.168.1xx.45) –> pfsense 2.2 (192.168.1xx.4) --> Internetrouter(192.168.1xx.1) --> Internet --> cisco886 IOS (217.zzz.zzz.105) --> Server 192.168.2yy.5

            When i try to ping from client 192.168.1xx.45 the server at 192.168.2yy.5 the tunnel gets established on both sides.
            but i can't transfer any data.

            also the encryptioncounters on the cisco ios stays at 0.
            I had the same issue with PFsense 2.1.5 so i assume a bug at the cisco IOS router here.

            best regards
            thomas

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.