I’ve got a 1:1 NAT rule setup to a customers Draytek, this routes through a pfsense firewall and works in terms of internet connection. But the customer is unable to get an IPSec connection working.
Are there any config changes I need to do further to make sure this is truly 1:1 NAT as it seems as though the PFSense gateway is just blocking something related to this traffic.
To test I’ve put a draytek in myself on the site and am trying to map the IPSec to another external pfsense router.
These are the logs when the Draytek is trying to initiate the connection.
1.1.1.1 - Draytek Router
2.2.2.2 - External PFSENSE
01/02/2009 00:20 charon 11[NET] <3180> received packet: from 1.1.1.1[500] to 2.2.2.2[500] (760 bytes)
01/02/2009 00:20 charon 11[ENC] <3180> parsed IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) ]
01/02/2009 00:20 charon 11[CFG] <3180>...3180>3180>3180>
↧
PFSENSE NAT 1:1 Routing IPsec Issues
↧
