pfSense Gold Subscription

Author Topic: IPsec tunnel problem with 2.1.5 and 2.2rc  (Read 11985 times)

0 Members and 1 Guest are viewing this topic.

Offline tracer

  • Jr. Member
  • **
  • Posts: 55
  • Karma: +1/-0
    • View Profile
Re: IPsec tunnel problem with 2.1.5 and 2.2rc
« Reply #30 on: January 19, 2015, 05:37:33 am »
@doktornotor: Checking my reply, I said I remove "any NAT rules" meaning the ones I manually created !
But as known, the "Automatic Outbound NAT rules" persist due the mode !
So I'm pretty sure that if config is correctly interpreted by pfSense no manual rule should interfere.

But my Question was if any of the other inbound rules could interfere with VPN ?
Do you have an answer for this ?

Offline cmb

  • Hero Member
  • *****
  • Posts: 11230
  • Karma: +893/-7
    • View Profile
    • Chris Buechler
Re: IPsec tunnel problem with 2.1.5 and 2.2rc
« Reply #31 on: January 19, 2015, 11:00:56 am »
The automatic outbound NAT rules won't hurt anything with IPsec.

For inbound, if you have a port forward on UDP 500 or ESP traffic, that'll break it also. If you have a 1:1 NAT using the public IP where it terminates, that'll forward the traffic to an internal host and break things as well.

Offline tracer

  • Jr. Member
  • **
  • Posts: 55
  • Karma: +1/-0
    • View Profile
Re: IPsec tunnel problem with 2.1.5 and 2.2rc
« Reply #32 on: January 19, 2015, 11:06:48 am »
Hmm, thanks, but I can't find any inbound NATs with 500.
Maybe we should look at it using our old support contract ?

Offline cmb

  • Hero Member
  • *****
  • Posts: 11230
  • Karma: +893/-7
    • View Profile
    • Chris Buechler
Re: IPsec tunnel problem with 2.1.5 and 2.2rc
« Reply #33 on: January 19, 2015, 12:41:15 pm »
Maybe we should look at it using our old support contract ?

Commercial support is definitely the best answer. Your support expired over 5 years ago though, if you purchase to activate support on your account again, we can definitely assist.

Offline tracer

  • Jr. Member
  • **
  • Posts: 55
  • Karma: +1/-0
    • View Profile
Re: IPsec tunnel problem with 2.1.5 and 2.2rc
« Reply #34 on: January 20, 2015, 09:54:29 am »
I'll pm you on this, ok ?