Comments
-
FYI, it works now. I have enabled Perfect Forward Secrecy
-
and the PFSense logs just when I'm starting the VPN Feb 16 23:32:21 charon 08[IKE] <con2000|31> nothing to initiate Feb 16 23:32:21 charon 08[IKE] <con2000|31> activating new tasks Feb 16 23:32:21 charon 08[NET] <con2000|31> sending packet: from 49.255.146.71[4500] to 52.62.1.159[4500] (92 bytes) Feb 16 23:32:21 charon…
-
See below log summary. Negociation for 10.88.88.0/24 child is OK (green circled) but it looks like the second one for 10.99.99.0/24 fails (red circled)
-
Tunnel in PFsense is site to site. This configuration works fine if I enable only 10.88.88.0/24 child or 10.99.99.0/24 child in phase 2 but not both in the same time. I have tried route-base VPN setup without success.
-
Thanks for your input. Peer VPN device is PFSense (see config attached). Does it help? Best Regards,