Saludos!
I have a configuration in ipsec where i have a computer A with
pfsense and red lan A and
a server B with centos, in the pfsense I configure a mobile client and the
pre-shared keys but not a tunnel. When I try to do ping from my server B I have
this error in the pfsense
racoon: INFO: respond new phase 2 negotiation: “ip computer
A”[0]<=>”ip server B”[0]
racoon: INFO: no policy found, try to generate the policy : “ip
server B”/32[0] “red lan A”/24[0] proto=any dir=in
racoon: ERROR: not matched
racoon: ERROR: no suitable policy found.
racoon: ERROR: failed to pre-process packet.
Do I need configure a tunnel
o my configuration in the pfsense is bad?
The logs en in the centos
racoon: INFO: initiate new phase 2
negotiation: server B[0]<=>”ip computer A”[0]
Aug 10 11:55:52 actibts1 racoon: ERROR:
unknown notify message, no phase2 handle found.
Aug 10 11:56:12 actibts1 last message
repeated 2 times
Aug 10 11:56:22 actibts1 racoon: INFO:
IPsec-SA expired: AH/Tunnel “ip computer A”->server B spi=68606378(0x416d9
aa)
Aug 10 11:56:22 actibts1 racoon: WARNING:
the expire message is received but the handler has not been established.
Aug 10 11:56:22 actibts1 racoon: ERROR: “ip
computer A” give up to get IPsec-SA due to time up to wait.
Aug 10 11:56:22 actibts1 racoon: INFO:
IPsec-SA expired: ESP/Tunnel “ip computer A”->server B spi=149668357(0x8eb
