Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
486
Views
0
Helpful
5
Replies

Bytes-Out: 0(0B) Phase 2 IPSec tunnel

ioanmario99
Level 1
Level 1

‎07-29-2024 01:06 AM

Hello, 

I have an issue with Phase 2 of VPN tunnels.

ioanmario99_0-1722240359280.png

 

Despite I checked IPs to be whitelisted and configuration to matches on both ends, I can't send traffic to the partner end.

Any advice on troubleshooting this or check the potential issue ?

Labels:
0 Helpful
5 Replies 5

MHM Cisco World
VIP
VIP

‎07-29-2024 03:19 AM

what is the platform you use ?

MHM

0 Helpful

ioanmario99
Level 1
Level 1
In response to MHM Cisco World

‎07-29-2024 03:21 AM

I use Pfsense

0 Helpful

ccieexpert
VIP
VIP
In response to ioanmario99

‎07-29-2024 03:37 PM

the question is what are you using on the other side. a tunnel has two endpoints. what is other side of the pfsense ?

have you tried to generate traffic from pfsense side and are you seeing the outbound packet / SA traffic increase ?

0 Helpful

MHM Cisco World
VIP
VIP
In response to ioanmario99

‎07-29-2024 06:09 PM

if one side is cisco I can help you if not sorry maybe other can help you 

thanks a lot  

MHM

0 Helpful

ccieexpert
VIP
VIP

‎07-29-2024 09:21 AM

It is clear that packets are coming to pfsense but no packets are going out..

Please check the protected traffic (source and destination) that you define in the crypto acl is correct ? and traffic from the pfsense side is received by the pfsense correctly.. can you put some subnets on each side and show the ipsec sa etc so we can understand this better.

are you using a ASA or ios router on the other side ? please get "show crypto ipsec sa" from the cisco side.

0 Helpful
Customers Also Viewed These Support Documents