Re: [pfSense] IPSec not routing traffic over tunnel

2018-02-12 Thread Roland Giesler
On 10 February 2018 at 11:11, Chris L wrote: > > > On Feb 9, 2018, at 5:25 AM, Mark Wiater > wrote: > > > > In my experience, one does not see routes in the routing table for IPSEC > based routes. > > > > IPSEC tunneling, I believe, happens before any

Re: [pfSense] IPSec not routing traffic over tunnel

2018-02-09 Thread Roland Giesler
The issue has been resolved. I was using ip addresses that were in my list of virtual ip addresses as well. After removing them from the virtual list it works like a charm! On 9 February 2018 at 15:25, Mark Wiater <mark.wia...@greybeam.com> wrote: > > > On 2/9/2018 6:42 AM,

Re: [pfSense] IPSec not routing traffic over tunnel

2018-02-09 Thread Roland Giesler
an tunnel private > network/ip address too and limit access with firewall rules. > > Eero > > On Thu, Feb 8, 2018 at 9:42 PM, Roland Giesler <roland@greentree.systems> > wrote: > > > On 8 February 2018 at 20:40, Eero Volotinen <eero.voloti...@iki.fi> >

Re: [pfSense] IPSec not routing traffic over tunnel

2018-02-08 Thread Roland Giesler
> Eero > > > > 8.2.2018 18.17 "Roland Giesler" <roland@greentree.systems> kirjoitti: > > > I'm trying to find a solution and know there are quite a few pfSense > users > > here, so here goes... > > > > We've set up some IPSec tunnels and

[pfSense] IPSec not routing traffic over tunnel

2018-02-08 Thread Roland Giesler
I'm trying to find a solution and know there are quite a few pfSense users here, so here goes... We've set up some IPSec tunnels and they connect. The Phase2 also "comes up", but we can't reach the hosts specified in the Phase2 "remote network". One instance (to keep it simpler): WAN gateway:

Re: [pfSense] IPSec Bug?

2017-02-03 Thread Roland Giesler
ients rather that site-to-site... :-( Not what we had in mind. Roland > > Problem is in DH group. try enabling same DH also in pfsense. > > -- > Eero > > 2017-02-03 13:17 GMT+02:00 Roland Giesler <roland@greentree.systems>: > >> On Tue, Jan 24, 2017 at 8:16 PM,

Re: [pfSense] IPSec Bug?

2017-02-03 Thread Roland Giesler
less of what I select (by ticking the boxes - net very difficult), that is then not offered. So if I select 3DES, it is not offered. If I select SHA256 it's not offered, and so on. Roland > > Eero > > 2017-01-17 16:36 GMT+02:00 Roland Giesler <rol...@thegreentree.za.net>: &g

Re: [pfSense] IPSec Bug?

2017-02-03 Thread Roland Giesler
On Tue, Jan 24, 2017 at 9:56 PM, Jim Thompson <j...@netgate.com> wrote: > On Tue, Jan 24, 2017 at 12:16 PM, Eero Volotinen <eero.voloti...@iki.fi> > wrote: > > What hardware is other side running? Why you are trying to use 3des? > > > > Eero > > > >

Re: [pfSense] IPSec Bug?

2017-01-24 Thread Roland Giesler
Am I still on this list? I'm not getting any mail from there. Could someone just tell me if you see my mail please? On Tue, Jan 17, 2017 at 4:36 PM, Roland Giesler <rol...@thegreentree.za.net> wrote: > We've battled all afternoon to establish an IPSec site-to-site > connection.

[pfSense] IPSec Bug?

2017-01-24 Thread Roland Giesler
y. Is this a bug? If now, how to I force pfSense to behave and start using the settings I set. IPSec IKE V2 with pre-shared key. I'm running 2.3.2_1 Anyone that has seen this? regards Roland Giesler ___ pfSense mailing list https://lists.pfsen