IPsec doesn't work after update to v2.2.3 and/or installing FreeRadius2



  • Hi!

    My IPsec-tunnel works well util I upgraded pfSense to v2.2.3. At the same time I installed FreeRadius2. So I don't know the reason, why IPsec do not work now!

    Jul 19 13:59:51 ipsec_starter[71965]:  
    Jul 19 13:59:51 ipsec_starter[71965]: 'con1' routed 
    Jul 19 13:59:51 charon: 10[CFG] received stroke: route 'con1' 
    Jul 19 13:59:51 charon: 14[CFG] added configuration 'con1' 
    Jul 19 13:59:51 charon: 14[CFG] received stroke: add connection 'con1' 
    Jul 19 13:59:51 ipsec_starter[71965]: charon (72241) started after 60 ms 
    Jul 19 13:59:51 charon: 00[JOB] spawning 16 worker threads 
    Jul 19 13:59:51 charon: 00[LIB] loaded plugins: charon unbound aes des blowfish rc2 sha1 sha2 md4 md5 random nonce x509 revocation constraints pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp dnskey sshkey ipseckey pem openssl fips-prf xcbc cmac hmac curl attr kernel-pfkey kernel-pfroute resolve socket-default stroke smp updown eap-identity eap-sim eap-md5 eap-mschapv2 eap-dynamic eap-radius eap-tls eap-ttls eap-peap xauth-generic xauth-eap whitelist addrblock unity 
    [b]Jul 19 13:59:51 charon: 00[CFG] loaded 0 RADIUS server configurations [/b]
    [b]Jul 19 13:59:51 charon: 00[CFG] opening triplet file /var/etc/ipsec/ipsec.d/triplets.dat failed: No such file or directory [/b]
    Jul 19 13:59:51 charon: 00[CFG] loaded IKE secret for <my_dyndns><ip_remote_gateway>Jul 19 13:59:51 charon: 00[CFG] loading secrets from '/var/etc/ipsec/ipsec.secrets' 
    Jul 19 13:59:51 charon: 00[CFG] loading crls from '/var/etc/ipsec/ipsec.d/crls' 
    Jul 19 13:59:51 charon: 00[CFG] loading attribute certificates from '/var/etc/ipsec/ipsec.d/acerts' 
    Jul 19 13:59:51 charon: 00[CFG] loading ocsp signer certificates from '/var/etc/ipsec/ipsec.d/ocspcerts' 
    Jul 19 13:59:51 charon: 00[CFG] loading aa certificates from '/var/etc/ipsec/ipsec.d/aacerts' 
    Jul 19 13:59:51 charon: 00[CFG] loaded ca certificate ".........." from '/var/etc/ipsec/ipsec.d/cacerts/df28683a.0.crt' 
    Jul 19 13:59:51 charon: 00[CFG] loaded ca certificate ".........." from '/var/etc/ipsec/ipsec.d/cacerts/a9025906.0.crt' 
    Jul 19 13:59:51 charon: 00[CFG] loading ca certificates from '/var/etc/ipsec/ipsec.d/cacerts' 
    Jul 19 13:59:51 charon: 00[CFG] ipseckey plugin is disabled 
    [b]Jul 19 13:59:51 charon: 00[NET] enabling UDP decapsulation for IPv6 on port 4500 failed [/b]
    [b]Jul 19 13:59:51 charon: 00[KNL] unable to set UDP_ENCAP: Invalid argument [/b]
    Jul 19 13:59:51 charon: 00[DMN] Starting IKE charon daemon (strongSwan 5.3.2, FreeBSD 10.1-RELEASE-p13, amd64) 
    Jul 19 13:59:51 ipsec_starter[71373]: no known IPsec stack detected, ignoring! 
    Jul 19 13:59:51 ipsec_starter[71373]: no KLIPS IPsec stack detected 
    Jul 19 13:59:51 ipsec_starter[71373]: no netkey IPsec stack detected 
    Jul 19 13:59:51 ipsec_starter[71373]: Starting strongSwan 5.3.2 IPsec [starter]...</ip_remote_gateway></my_dyndns> 
    

    Please help  ;)

    Best regards,
    esquire1968


Log in to reply