JDNow77
asked on
Problems with Authenticating WPA-Enterprise client over a IPSec Tunnel
We have several small networks connected to our corporate office over IPSec tunnels. At our office, we have a Windows 2008 R2 server running NPS performing RADIUS authentication with WAPs. Up until now, everything has been running fine. But we connected a new office and we can't get any of our client working on the WAP at the remote office. We can see the RADIUS authentication request come from the WAP across the VPN and hit the server, the server responds back to the WAP, but then nothing happens on the requesting client. All other traffic over the VPN comes across without issue.
The difference at this new network is that we're trying a Netgate PFsense firewall instead of our normal SonicWall. The only thing I can come up with is the Pfsense firewall is interfering with the WAP in some form, but so far I haven't found anything that would prevent that.
The WAPs being used (at both old and new locations) are Open-Mesh MR1750v2
The difference at this new network is that we're trying a Netgate PFsense firewall instead of our normal SonicWall. The only thing I can come up with is the Pfsense firewall is interfering with the WAP in some form, but so far I haven't found anything that would prevent that.
The WAPs being used (at both old and new locations) are Open-Mesh MR1750v2
masnrock
Have you checked logs for any traffic getting blocked either way in the flow of traffic?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.
I have recommended this question be closed as follows:
Accept: 'JDNow77' (https:#a42125639)
If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.
seth2740
Experts-Exchange Cleanup Volunteer
I have recommended this question be closed as follows:
Accept: 'JDNow77' (https:#a42125639)
If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.
seth2740
Experts-Exchange Cleanup Volunteer