Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1504
Views
0
Helpful
1
Replies

Cisco 7204VXR to Pfsense GRE Tunnel

mudvayne15
Level 1
Level 1

‎11-05-2020 04:08 PM - edited ‎11-05-2020 06:18 PM

Hi Everyone,

I am trying to establish a GRE tunnel between Cisco and Pfsense. Phase 1 and Phase 2 go up however it is unstable, it disconnects from time to time.

On Cisco, the configuration below as follows.

 

crypto isakmp policy 1
encr aes 256
authentication pre-share
group 5
crypto isakmp key *************** address 0.0.0.0 0.0.0.0
!
!
crypto ipsec transform-set ipsec-vti esp-aes 256 esp-sha-hmac
!
crypto ipsec profile ipsec-vti
set security-association replay window-size 1024
set transform-set ipsec-vti
!
!
interface Tunnel34
ip address 10.255.255.154 255.255.255.252
tunnel source  x.x96.242
tunnel destination x.x133.66
tunnel protection ipsec profile ipsec-vti
!
ip route 192.168.1.0 255.255.255.0 Tunnel34

Pfsense settings below

Internet Protocol: IPv4
Interface: WAN
Authentication method: Mutual PSK
Negotiation mode: Main
My identifier: x.x133.66
Peer identifier: x.x96.242
Pre-Shared Key:
Policy Generation: Default
Proposal Checking: Default
Encryption algorithm :AES 256bits
Hash algorithm: SHA
DH key group: 5
Lifetime: 28800
NAT Traversal: Disable
Dead Peer Detection
Enable: 10 seconds, 5 retries

 

Also, when the connection establishes, I am still unable to reach the LAN portion of each side.

Anyone can help me with this? Or have done it already?

Thanks in Advance.

0 Helpful
1 Reply 1

Dominik Dobrowolski
Level 1
Level 1

‎11-09-2020 01:14 PM

Hi,

I don't know if that will solve your problem, but in tunnel settings try:

tunnel mode ipsec ipv4

 

Good Luck,

0 Helpful
Customers Also Viewed These Support Documents