I had this site-to-site tunnel working flawlessly yesterday until I changed the IP scheme on one of the networks and now I cannot for the life of me figure out what is wrong. I have deleted and recreated the tunnels and quadruple checked the settings on both sides. For the sake of this post Site 1's public IP is [1.2.3.4] and Site 2 is [5.6.7.8] and the racoon config is posted below. Site 1 is the network that I changed last night and it was [192.168.1.0/24] when everything worked.

Static DSL Site 1
[10.1.10.0/24]


Static DSL Site 2
[10.1.5.0/24]



Site1 config
http://pastebin.com/X89CXeGQ

Site2 config
http://pastebin.com/kiQc6S7v

Site2 IPSEC Log
When the error message is googled, most of the million responses I scanned were simply. "Your settings don't match at each site, you don't have firewall rules setup correctly, you fail at life"

Quote :

"Jun 30 10:42:50 racoon: INFO: unsupported PF_KEY message REGISTER Jun 30 10:42:51 racoon: [Self]: INFO: 127.0.0.1[500] used as isakmp port (fd=13) Jun 30 10:42:51 racoon: [Self]: INFO: 5.6.7.8[500] used as isakmp port (fd=14) Jun 30 10:42:51 racoon: [Self]: INFO: 10.1.5.1[500] used as isakmp port (fd=15) Jun 30 10:45:24 racoon: [Self]: INFO: 127.0.0.1[500] used as isakmp port (fd=13) Jun 30 10:45:24 racoon: [Self]: INFO: 5.6.7.8[500] used as isakmp port (fd=14) Jun 30 10:45:24 racoon: [Self]: INFO: 10.1.5.1[500] used as isakmp port (fd=15)"

6/30/2010 3:42:13 PM

Ignore, Trash, Purge, Laugh, Humiliate, Troll.

Tunnel was up the entire time. pfSense just doesn't show any security associations when there is not any traffic being passed between the locations.

6/30/2010 4:44:51 PM