|
||||||||||
Hi, so I tryed the new version of pfSense but the ipsec tunnel still dosn't wans to work ! I get exactly the same problem. pfsense version is 0.67 on a soekris 4801 with 5 nic and m0n0wall is running version 1.11 on a IP330 with 5 nic. Here is the log from the m0n0wall: Jun 12 13:41:19 racoon: ERROR: isakmp.c:1073:isakmp_ph2begin_r(): failed to pre-process packet. Jun 12 13:41:19 racoon: ERROR: isakmp_quick.c:1046:quick_r1recv(): failed to get sainfo. Jun 12 13:41:19 racoon: ERROR: isakmp_quick.c:1812:get_sainfo_r(): failed to get sainfo. Jun 12 13:41:19 racoon: INFO: isakmp.c:1059:isakmp_ph2begin_r(): respond new phase 2 negotiation: 62.50.75.5[0]<=>213.39.112.30[0] And the log from the pfSense box: Jun 12 13:41:49 racoon: ERROR: pfkey.c:804:pfkey_timeover(): 62.50.75.5 give up to get IPsec-SA due to time up to wait. Jun 12 13:41:19 racoon: INFO: isakmp.c:952:isakmp_ph2begin_i(): initiate new phase 2 negotiation: 213.39.112.30[0]<=>62.50.75.5[0] Can I provide something else wich would help you to understand what happening ? Thank you, Marc Holger Bauer wrote: >There is a new pfSense image out for the wrap. Please give this one a try: http://pfsense.com/downloads/pfSense-128-megs-wrap-soekris-0.67.0.bin.gz > >Reporting back if this fixes the problem would be appreciated. > >Holger > > -----Ursprüngliche Nachricht----- > Von: Marc Berthold [mailto:ber at fmx dot ch] > Gesendet: Mi 08.06.2005 10:27 > An: Holger Bauer > Cc: m0n0wall at lists dot m0n0 dot ch > Betreff: Re: AW: [m0n0wall] IPSec tunnel between m0n0wall and pfSense > > > > > >____________ >Virus checked by G DATA AntiVirusKit > > > -- #include <standard.disclaimer> Berthold Marc, Rolle, Switzerland // Computers are only interesting when they go wrong, // otherwise it's just like watching television !!! |