Thanks for the answer, but are not clear, why does not work? Why 1 phase is not established?
racoon: [Statichov_7]: INFO: IPsec-SA request for 192.186.180.39 queued due to no phase1 found. Dec 10 08:57:01 racoon: [Statichov_7]: INFO: initiate new phase 1 negotiation: 192.168.180.33[500]<=>192.186.180.39[500] Dec 10 08:57:01 racoon: INFO: begin Aggressive mode. Dec 10 08:57:08 racoon: INFO: request for establishing IPsec-SA was queued due to no phase1 found. Dec 10 08:57:10 racoon: ERROR: phase1 negotiation failed due to time up. 40204b40307c735f:0000000000000000 Dec 10 08:57:13 racoon: [Kirova_42]: ERROR: phase2 negotiation failed due to time up waiting for phase1. ESP 192.186.180.8[500]->192.168.180.1[500] Dec 10 08:57:13 racoon: INFO: delete phase 2 handler. Dec 10 08:57:15 racoon: ERROR: phase1 negotiation failed due to time up. 85cf89b7a5eae014:0000000000000000 Dec 10 08:57:15 racoon: ERROR: phase1 negotiation failed due to time up. df7cddf1db37a5ac:0000000000000000 Dec 10 08:57:17 racoon: [Mosk_34]: ERROR: phase2 negotiation failed due to time up waiting for phase1. ESP 192.186.180.36[500]->192.168.180.33[500] Dec 10 08:57:17 racoon: INFO: delete phase 2 handler. Dec 10 08:57:22 racoon: [Platova_3]: INFO: IPsec-SA request for 192.186.180.37 queued due to no phase1 found. Dec 10 08:57:22 racoon: [Platova_3]: INFO: initiate new phase 1 negotiation: 192.168.180.33[500]<=>192.186.180.37[500] Dec 10 08:57:22 racoon: INFO: begin Aggressive mode. Dec 10 08:57:27 racoon: [Statichov_7]: INFO: phase2 sa expired 192.168.180.33-192.186.180.39 Dec 10 08:57:27 racoon: INFO: request for establishing IPsec-SA was queued due to no phase1 found. Dec 10 08:57:28 racoon: [Statichov_7]: INFO: phase2 sa deleted 192.168.180.33-192.186.180.39 Dec 10 08:57:28 racoon: [Platova_3]: ERROR: phase2 negotiation failed due to time up waiting for phase1. ESP 192.186.180.37[500]->192.168.180.33[500] Dec 10 08:57:28 racoon: INFO: delete phase 2 handler. Dec 10 08:57:32 racoon: [Mosk_34]: INFO: IPsec-SA request for 192.186.180.36 queued due to no phase1 found. Dec 10 08:57:32 racoon: [Mosk_34]: INFO: initiate new phase 1 negotiation: 192.168.180.33[500]<=>192.186.180.36[500] Dec 10 08:57:32 racoon: INFO: begin Aggressive mode. Dec 10 08:57:35 racoon: [M.Gorkogo_59]: INFO: IPsec-SA request for 192.186.180.35 queued due to no phase1 found. Dec 10 08:57:35 racoon: [M.Gorkogo_59]: INFO: initiate new phase 1 negotiation: 192.168.180.33[500]<=>192.186.180.35[500] Dec 10 08:57:35 racoon: INFO: begin Aggressive mode. Dec 10 08:57:39 racoon: [Mosk_34]: ERROR: phase2 negotiation failed due to time up waiting for phase1. ESP 192.186.180.36[500]->192.168.180.33[500] Dec 10 08:57:39 racoon: INFO: delete phase 2 handler. Dec 10 08:57:41 racoon: [KUI & Privatiz]: INFO: IPsec-SA request for 192.186.180.34 queued due to no phase1 found. Dec 10 08:57:41 racoon: [KUI & Privatiz]: INFO: initiate new phase 1 negotiation: 192.168.180.33[500]<=>192.186.180.34[500] Dec 10 08:57:41 racoon: INFO: begin Aggressive mode. Drovalev Roman Nikolaevich. James Bensley <[email protected]> написано 10.12.2010 11:49:27: > От: James Bensley <[email protected]> > Кому: [email protected] > Дата: 10.12.2010 11:49 > Тема: Re: [pfSense Support] 2.0 - don't work Ipsec! > > Hi, > I have a site-to-site IPSec VPN working so it does work (although > mine is between pfSense 2.0 and an Astaro Security Gateway) I > suspect some tinkering is required. I'm not too hot on this topic > but I think the problm is here somewhere,Google these: > > Dec 10 08:55:04 racoon: [Milicia]: INFO: initiate new phase 1 > > negotiation: 192.168.180.1[500]<=>192.186.180.15[500] > > Dec 10 08:55:04 racoon: INFO: begin Aggressive mode. > > Dec 10 08:55:05 racoon: [Statichov_7]: INFO: IPsec-SA request for > > 192.186.180.39 queued due to no phase1 found.
