Win10 can't connect ipsec on pfsense 2.2.6



  • It's my log

    Dec 24 10:41:45 charon: 05[JOB] <6> deleting half open IKE_SA after timeout
    Dec 24 10:41:15 charon: 16[NET] <6> sending packet: from 219.85.218.78[500] to 203.74.122.103[500] (333 bytes)
    Dec 24 10:41:15 charon: 16[ENC] <6> generating IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) CERTREQ N(MULT_AUTH) ]
    Dec 24 10:41:15 charon: 16[IKE] <6> sending cert request for "C=TW, ST=Taiwan, L=Taipei, O=aspa, E=akong@aspa.idv.tw, CN=internal-ca"
    Dec 24 10:41:15 charon: 16[IKE] <6> remote host is behind NAT
    Dec 24 10:41:15 charon: 16[IKE] <6> 203.74.122.103 is initiating an IKE_SA
    Dec 24 10:41:15 charon: 16[ENC] <6> received unknown vendor ID: 01:52:8b:bb:c0:06:96:12:18:49:ab:9a:1c:5b:2a:51:00:00:00:02
    Dec 24 10:41:15 charon: 16[IKE] <6> received Vid-Initial-Contact vendor ID
    Dec 24 10:41:15 charon: 16[IKE] <6> received MS-Negotiation Discovery Capable vendor ID
    Dec 24 10:41:15 charon: 16[IKE] <6> received MS NT5 ISAKMPOAKLEY v9 vendor ID
    Dec 24 10:41:15 charon: 16[ENC] <6> parsed IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) V V V V ]

    My client system win10,The android strongswan can connect pfsense ipsec.
    Could I need edit something?



  • Check logs in windows event viewer. The VPN logs are under Windows Logs > Application Logs. The source would be RasClient.



  • Hello,
    Error Code is 809,What is this problem?



  • I have test result.
    Client PC –> Pfsense 2.2.6 --------IPSec IKEV2------------> Remote Pfsense 2.2.6 IPSec VPN Server
    This is will failed and get error code 809

    Client PC --> Mobile Hot Spot Internet Share ------IPSec IKEV2 ----------> Remote Pfsense 2.2.6 IPSec VPN Server
    This is can connect it.

    I don't know why my client under pfsense 2.2.6 will failed.But it's can connect if Client PC under ip sharing or mobile hot spot.
    How to check it?


Log in to reply