Actions
Feature #5919
closedAdd a control to the web gui to allow the setting of leftsendcert in IPSec
Status:
Duplicate
Priority:
Normal
Assignee:
-
Category:
IPsec
Target version:
-
Start date:
02/22/2016
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Release Notes:
Description
In some IPSec tunnels the responder end requires the initiator to set send the certificate and that's only possible by setting leftsendcert=always or yes in ipsec.conf.
Currently we only set that if you are using IKEv2 with EAP. Some other cases require it to establish a tunnel.
See: SFH-91652
This patch allowed that to connect: http://files.atx.pfsense.org/jimp/patches/rsasig-leftsendcert-always.diff
Updated by Jim Pingle over 4 years ago
- Status changed from New to Duplicate
This appears to be a duplicate of #6082 but if it's not, which scenarios still do not work?
In the code as it is today, anywhere that has leftcert
also has leftsendcert=always
.
Actions