Bug #10873: Algo VPN's IPSec appears to have added name constraints on their CA cert and pfsense can't handle it - pfSense - pfSense bugtracker

Actions

Copy link

Bug #10873

closed

Algo VPN's IPSec appears to have added name constraints on their CA cert and pfsense can't handle it

Added by David Ross over 3 years ago. Updated over 3 years ago.

Status:

Rejected

Priority:

Normal

Assignee:

Category:

IPsec

Target version:

Start date:

09/07/2020

Due date:

% Done:

Estimated time:

Plus Target Version:

Release Notes:

Affected Version:

2.4.5-p1

Affected Architecture:

All

Description

This PR in algo IPS VPN configurator broke its compatibility with pfsense in its default configuration:
https://github.com/trailofbits/algo/pull/1675

More details on the issue here:
https://github.com/davidemyers/algo-pfsense/issues/2

I'm not entirely sure, but it appears there needs to be a tweak in the pfsense ipsec configuration in order to handle a CA cert with name constraints.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #10873

Algo VPN's IPSec appears to have added name constraints on their CA cert and pfsense can't handle it

Updated by Jim Pingle over 3 years ago