Actions
Bug #10873
closedAlgo VPN's IPSec appears to have added name constraints on their CA cert and pfsense can't handle it
Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
IPsec
Target version:
-
Start date:
09/07/2020
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.4.5-p1
Affected Architecture:
All
Description
This PR in algo IPS VPN configurator broke its compatibility with pfsense in its default configuration:
https://github.com/trailofbits/algo/pull/1675
More details on the issue here:
https://github.com/davidemyers/algo-pfsense/issues/2
I'm not entirely sure, but it appears there needs to be a tweak in the pfsense ipsec configuration in order to handle a CA cert with name constraints.
Actions