Hi. I'm using PfSense 1.2.2 as VPN-hub for several offices. One of the office (with Netgear FVS318 VPN-router) has direct connection to PfSense - both plugged in the same Ethernet switch. So, I think there no sense to use encryption protocol. But first, I tried configuration with ESP - it's all worked fine. Then, I'd try to setup IPSec-tunnel with AH protocol between PfSense and this Netgear.
As you may see from this log, the tunnel was established: Jan 26 23:46:56 pfsense racoon: INFO: initiate new phase 2 negotiation: xxx.xxx.xxx.xxx[0]<=>yyy.yyy.yyy.yyy[0] Jan 26 23:46:58 pfsense racoon: INFO: IPsec-SA established: AH yyy.yyy.yyy.yyy[0]->xxx.xxx.xxx.xxx[0] spi=85003838(0x5110e3e) Jan 26 23:46:58 pfsense racoon: INFO: IPsec-SA established: AH xxx.xxx.xxx.xxx[0]->yyy.yyy.yyy.yyy[0] spi=3671231580(0xdad28c5c) But there was no visibilty of remote subnet - pinging remote hosts failed. So my question - is there anyone tested PfSense with AH protocol and it worked? Frankly, I don't think so because of the bug on screenshot - it's seems as an error in "setkey -D" parsing. -- With best regards, Pavel.
<<attachment: pfsense-ah.JPG>>
--------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
