OPNsense Forum

Archive => 16.1 Legacy Series => Topic started by: cclements on June 19, 2016, 07:21:18 am

Title: [SOLVED] IPSec VPN to iOS
Post by: cclements on June 19, 2016, 07:21:18 am
After following the guide at:

https://docs.opnsense.org/manual/how-tos/ipsec-road.html

My iOS device fails to connect to my VPN.  When I look at the VPN logs, I see:

Jun 19 00:14:06   charon: 11[NET] sending packet: from xx.xx.xx.xx[500] to xx.xx.xx.xx[29123] (56 bytes)
Jun 19 00:14:06   charon: 11[ENC] generating INFORMATIONAL_V1 request 84313137 [ N(AUTH_FAILED) ]
Jun 19 00:14:06   charon: 11[IKE] Aggressive Mode PSK disabled for security reasons
Jun 19 00:14:06   charon: 11[IKE] <36> Aggressive Mode PSK disabled for security reasons
Jun 19 00:14:06   charon: 11[IKE] xx.xx.xx.xx is initiating a Aggressive Mode IKE_SA
Jun 19 00:14:06   charon: 11[IKE] <36> xx.xx.xx.xx is initiating a Aggressive Mode IKE_SA

I have triple checked that aggressive mode is selected in my config, and saved and restarted the service after doing so. 

Any ideas on what I'm doing wrong or what else I can try?
Title: Re: IPSec VPN to iOS
Post by: cclements on June 19, 2016, 07:33:04 am
Sigh, for some reason my opnsense box wasn't picking up the updates available since the base release of 16.1 until just a few minutes ago.  Updating to 16.1.17 fixed this issue for me.  My iOS client now connects as expected.
Title: Re: [SOLVED] IPSec VPN to iOS
Post by: franco on June 21, 2016, 08:59:49 pm
First upgrade can fail, mostly for DNS reasons. It's good practice to upgrade as soon as installed. The images have a really short life-span. :)

Glad this worked out fine.


Cheers,
Franco