Project

General

Profile

Feature #5919

Add a control to the web gui to allow the setting of leftsendcert in IPSec

Added by Steve Wheeler 12 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
IPsec
Target version:
Start date:
02/22/2016
Due date:
% Done:

0%


Description

In some IPSec tunnels the responder end requires the initiator to set send the certificate and that's only possible by setting leftsendcert=always or yes in ipsec.conf.
Currently we only set that if you are using IKEv2 with EAP. Some other cases require it to establish a tunnel.
See: SFH-91652
This patch allowed that to connect: http://files.atx.pfsense.org/jimp/patches/rsasig-leftsendcert-always.diff

Also available in: Atom PDF