Project

General

Profile

Actions
Copy link

Bug #7826

closed

rule to open port 4500 udp for ipsec/ikev2 ignored and blocked

Added by Domenico De Monte over 7 years ago. Updated over 7 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
08/29/2017
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Affected Version:
2.3.4_1
Affected Plus Version:
Affected Architecture:
amd64

Description

Hello,
on a pfsense 2.3.4_1 installed on a vm ( vmware ), i create a ikev2 ipsec server.

If i try to connect with macOS 10.12.6 behind a iPhone 6 tethering everything works.

If i try to connect with Fedora 26 behind a iPhone 6 tethering everything works.

I can NOT connect with Windows 7/10 behind a iPhone 6 tethering.

Inside System logs > Firewall i can see that pfSense block connection for ports 4500 and for UDP Protocol ?? ( screen1 ) but port 4500 is opened on wan interface ( screen 2 ).

Also this happened ONLY for Windows 7/10 client behind iPhone 6 tethering. If i try to connect with both Windows version behind a cisco router ( 1900 series for example ), then everything works.

Waiting for your reply

Regards

Files

Download all files
screen2.png (108 KB) screen2.png screen2 Domenico De Monte, 08/29/2017 10:58 AM
screen1.png (60 KB) screen1.png Domenico De Monte, 08/29/2017 11:00 AM
Actions
Copy link
 #1

Updated by Jim Pingle over 7 years ago

  • Status changed from New to Rejected
  • Priority changed from Very High to Normal

There must be something different about the packet causing it to be dropped. Please post on the forum, list, or reddit first to discuss the issue in detail to figure out what is going on.

Actions
Copy link

Also available in: Atom PDF