IPsec doesn't work after update to v2.2.3 and/or installing FreeRadius2
-
Hi!
My IPsec-tunnel works well util I upgraded pfSense to v2.2.3. At the same time I installed FreeRadius2. So I don't know the reason, why IPsec do not work now!
Jul 19 13:59:51 ipsec_starter[71965]: Jul 19 13:59:51 ipsec_starter[71965]: 'con1' routed Jul 19 13:59:51 charon: 10[CFG] received stroke: route 'con1' Jul 19 13:59:51 charon: 14[CFG] added configuration 'con1' Jul 19 13:59:51 charon: 14[CFG] received stroke: add connection 'con1' Jul 19 13:59:51 ipsec_starter[71965]: charon (72241) started after 60 ms Jul 19 13:59:51 charon: 00[JOB] spawning 16 worker threads Jul 19 13:59:51 charon: 00[LIB] loaded plugins: charon unbound aes des blowfish rc2 sha1 sha2 md4 md5 random nonce x509 revocation constraints pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp dnskey sshkey ipseckey pem openssl fips-prf xcbc cmac hmac curl attr kernel-pfkey kernel-pfroute resolve socket-default stroke smp updown eap-identity eap-sim eap-md5 eap-mschapv2 eap-dynamic eap-radius eap-tls eap-ttls eap-peap xauth-generic xauth-eap whitelist addrblock unity [b]Jul 19 13:59:51 charon: 00[CFG] loaded 0 RADIUS server configurations [/b] [b]Jul 19 13:59:51 charon: 00[CFG] opening triplet file /var/etc/ipsec/ipsec.d/triplets.dat failed: No such file or directory [/b] Jul 19 13:59:51 charon: 00[CFG] loaded IKE secret for <my_dyndns><ip_remote_gateway>Jul 19 13:59:51 charon: 00[CFG] loading secrets from '/var/etc/ipsec/ipsec.secrets' Jul 19 13:59:51 charon: 00[CFG] loading crls from '/var/etc/ipsec/ipsec.d/crls' Jul 19 13:59:51 charon: 00[CFG] loading attribute certificates from '/var/etc/ipsec/ipsec.d/acerts' Jul 19 13:59:51 charon: 00[CFG] loading ocsp signer certificates from '/var/etc/ipsec/ipsec.d/ocspcerts' Jul 19 13:59:51 charon: 00[CFG] loading aa certificates from '/var/etc/ipsec/ipsec.d/aacerts' Jul 19 13:59:51 charon: 00[CFG] loaded ca certificate ".........." from '/var/etc/ipsec/ipsec.d/cacerts/df28683a.0.crt' Jul 19 13:59:51 charon: 00[CFG] loaded ca certificate ".........." from '/var/etc/ipsec/ipsec.d/cacerts/a9025906.0.crt' Jul 19 13:59:51 charon: 00[CFG] loading ca certificates from '/var/etc/ipsec/ipsec.d/cacerts' Jul 19 13:59:51 charon: 00[CFG] ipseckey plugin is disabled [b]Jul 19 13:59:51 charon: 00[NET] enabling UDP decapsulation for IPv6 on port 4500 failed [/b] [b]Jul 19 13:59:51 charon: 00[KNL] unable to set UDP_ENCAP: Invalid argument [/b] Jul 19 13:59:51 charon: 00[DMN] Starting IKE charon daemon (strongSwan 5.3.2, FreeBSD 10.1-RELEASE-p13, amd64) Jul 19 13:59:51 ipsec_starter[71373]: no known IPsec stack detected, ignoring! Jul 19 13:59:51 ipsec_starter[71373]: no KLIPS IPsec stack detected Jul 19 13:59:51 ipsec_starter[71373]: no netkey IPsec stack detected Jul 19 13:59:51 ipsec_starter[71373]: Starting strongSwan 5.3.2 IPsec [starter]...</ip_remote_gateway></my_dyndns>
Please help ;)
Best regards,
esquire1968