Project

General

Profile

Actions
Copy link

Bug #4818

closed

IPSec makes worse in some cases - since 2.2.3 Update

Added by Marvin Kamm almost 9 years ago. Updated almost 9 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Chris Buechler
Category:
IPsec
Target version:
2.2.4
Start date:
07/06/2015
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.2.3
Affected Architecture:
amd64

Description

Since updateing pfsense from V2.1.5 to V2.2.3, I´ve some issues with the IPsec VPN.
I´ve configured about 20 IPsec vpn connections to customers.

Four of them use Lancom routers for IPsec connections.
Exactly those four are not operational after updateing.

Connection parameters haven´t changed.
I tried to connect with 3DES encryption instead of AES but won´t work too.
Error I often see is "invalid ID_V1 payload length, decryption failed?".

Annexed an extract from the pfsense log.
I set IKE SA, IKE Child SA and Configuration backend in Diag mode at the IPsec Debug page.

Many Thanks!

Files

Download all files
IPsec_log.csv (25.8 KB) IPsec_log.csv Marvin Kamm, 07/06/2015 10:19 AM
IPsec_log1.csv (18.4 KB) IPsec_log1.csv Marvin Kamm, 07/07/2015 09:38 AM
Actions
Copy link

Also available in: Atom PDF