It appears the %any has been changed to any4 without the % which i think causes the peer configs to fail as they dont match ? , should it not be %any or %any4 ??
ÓN THE RUT240 Side
authentication of 'any4' (myself) with pre-shared key
Thu Nov 26 13:05:28 2020 daemon.info ipsec: 07[IKE] establishing CHILD_SA angle{13}
Thu Nov 26 13:05:28 2020 daemon.info ipsec: 07[ENC] generating IKE_AUTH request 1 [ IDi AUTH SA TSi TSr N(MOBIKE_SUP) N(ADD_4_ADDR) N(MULT_AUTH) N(EAP_ONLY) N(MSG_ID_SYN_SUP) ]
Thu Nov 26 13:05:28 2020 daemon.info ipsec: 07[NET] sending packet: from 203.xx.251[4500] to 222.xx.59[4500] (352 bytes)
Thu Nov 26 13:05:28 2020 daemon.info ipsec: 08[NET] received packet: from 222.xx.59[4500] to 203.xx.251[4500] (80 bytes)
Thu Nov 26 13:05:28 2020 daemon.info ipsec: 08[ENC] parsed IKE_AUTH response 1 [ N(AUTH_FAILED) ]
Thu Nov 26 13:05:28 2020 daemon.info ipsec: 08[IKE] received AUTHENTICATION_FAILED notify error
on the other end of the tunnel PFSENSE
14[ENC] <29> parsed IKE_AUTH request 1 [ IDi AUTH SA TSi TSr N(MOBIKE_SUP) N(ADD_4_ADDR) N(MULT_AUTH) N(EAP_ONLY) N(MSG_ID_SYN_SUP) ] |
Nov 26 12:59:47 |
charon |
|
14[CFG] <29> looking for peer configs matching 222.xxx.xxx.59[%any]...203.xx.xxx.251[any4] |
Nov 26 12:59:47 |
charon |
|
14[CFG] <29> no matching peer config found |