IPsec keepalive doesn't work with 0.0.0.0/0 local subnet
|Affected version:||All||Affected Architecture:|
When you have a keepalive IP defined in a phase 2 that uses 0.0.0.0/0 (everything) as the local network, the logic that populates /var/db/ipsecpinghosts fails and it doesn't add anything to that file, so it doesn't send those pings. Probably should just pick the LAN IP in that case, or really it can pick any IP, since anything matches in that instance.
#1 Updated by Ermal Luçi 7 months ago
- Status changed from New to Feedback
- % Done changed from 0 to 100
Applied in changeset b0bf6bd017e27f6d8161fe8fff0ba8e6a71f96a3.