What authentication mode are you using...is it Pre-Shared Key...?Well if it is..then dont re-use the same key...Use different key for every tunnel.
On Thu, May 27, 2010 at 11:48 AM, Paul Peziol <[email protected]> wrote: > Well, I'm making progress. In the 2.0 I added a 2nd phase 2 for the 2nd > network. In the 1.2.3 side I added a 2nd identical tunnel. When I goto to > the status page on the 1.2.3 I get green arrows on both. On the 2.0beta side > I get a green arrow for the original 192.168.2.0 network but a yellow X on > the 192.168.4.0 network. > > > On Thu, May 27, 2010 at 1:23 AM, Abdulrehman <[email protected]>wrote: > >> Yes you will setup seperate tunnel for each subnet..I also get this error >> at times but it is fine after restarting racoon.... >> >> >> On Thu, May 27, 2010 at 11:13 AM, Paul Peziol <[email protected]>wrote: >> >>> This is what I get on the 1.2.3 side: racoon: *[Unknown Gateway/Dynamic] >>> *: ERROR: no policy found: 192.168.20.0/24[0]<http://192.168.20.0/24%5B0%5D> >>> 192.168.4.0/24[0] <http://192.168.4.0/24%5B0%5D> proto=any dir=in >>> >>> >>> On Thu, May 27, 2010 at 1:05 AM, Paul Peziol <[email protected]>wrote: >>> >>>> How would I set that up.Do I need 2 separate tunnels created or can I >>>> use 1 tunnel to route both networks. I tried to setup both subnets in the >>>> 2.0 version to connect to the 1.2.3 (that has 2 subnets) and it would >>>> error >>>> out. >>>> >>>> >>>> On Thu, May 27, 2010 at 12:58 AM, Abdulrehman <[email protected]>wrote: >>>> >>>>> Yes you can...Inface I have 3 different subnets on IPsec. >>>>> >>>>> On Thu, May 27, 2010 at 8:42 AM, Paul Peziol <[email protected]>wrote: >>>>> >>>>>> I have come across where pfsense 2.0 can support multiple networks >>>>>> over ipsec. Can I create a tunnel between pfsense 1.2.3rc1 and 2.0beta2. >>>>>> I have a 192.168.20.0/24 network behind the 2.0 pfsense (Site A) and >>>>>> behind the 1.2.3 I have 192.168.2.0/24 and 192.168.4.0/24 (Site B). >>>>>> Is it possible create a tunnel between site A and site B where Site A can >>>>>> access both networks on SiteB. I created the 2nd Phase2 policy in SiteA >>>>>> but >>>>>> that never seems to come up. While the 192.168.2.0 networks connects. >>>>>> >>>>>> Considering SiteB is a production environment I hesitate to upgrade to >>>>>> a beta version right now. Site A is not as critical as its a home office >>>>>> Thank you >>>>>> >>>>> >>>>> >>>>> >>>>> -- >>>>> >>>>> >>>>> Regards >>>>> Abdulrehman >>>>> >>>> >>>> >>> >> >> >> -- >> >> >> Regards >> Abdulrehman >> > > -- Regards Abdulrehman
