Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Site-to-Site IPSec VPN between PFSense 2.2.4 and Cisco ASA5505

    Scheduled Pinned Locked Moved IPsec
    3 Posts 3 Posters 1.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mrito
      last edited by

      Hi All,
      I have recently setup a site-to-site IPSec VPN b/w my new configured PFSense box and Cisco ASA5505. I have full control on both box and was able to setup IPSEC connection. However, both LAN network on Site A & Site B cannot access each other. Even PING each remote box IP is not possible.

      IPSec rules to allow all connection has been enabled and even Routing via PFsense box has been setup. But still no luck for me to get it working.

      Regards.
      Malvin
      ![pfsense IPSec Stat.JPG](/public/imported_attachments/1/pfsense IPSec Stat.JPG)
      ![pfsense IPSec Stat.JPG_thumb](/public/imported_attachments/1/pfsense IPSec Stat.JPG_thumb)
      ![pfsense log.JPG](/public/imported_attachments/1/pfsense log.JPG)
      ![pfsense log.JPG_thumb](/public/imported_attachments/1/pfsense log.JPG_thumb)

      1 Reply Last reply Reply Quote 0
      • C
        cmb
        last edited by

        You're sending traffic out from that side, and getting nothing from the ASA side. What do the SA counters show on the ASA?

        1 Reply Last reply Reply Quote 0
        • D
          djnrg787
          last edited by

          I believe it has to do with the nat rules in the asa you need to tell the asa that any traffic destined for the tunnel cannot go out the wan interface. I did it once don't remember the exact steps however.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.