Project

General

Profile

Actions

Regression #11442

closed

Distinguished Name (FQDN) IPsec peer identifier type is not formatted properly in ``swanctl.conf`` secrets

Added by Jim Pingle 8 months ago. Updated 6 months ago.

Status:
Resolved
Priority:
Very High
Assignee:
Category:
IPsec
Target version:
Start date:
02/18/2021
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Release Notes:
Default
Affected Version:
2.5.0
Affected Architecture:

Description

IPsec tunnels using an identifier type of "Distinguished Name" are not working properly. It appears that the identifier is not being written properly into the swanctl configuration. It's prefixed by an "@" and "fqdn:" when it should be one or the other (not both).

Users can temporarily set the identifier type to Key ID as a workaround.

To me, I have a fix.


Files

ipsec-config-11442.xml (1.82 KB) ipsec-config-11442.xml Jim Pingle, 03/11/2021 03:25 PM
Actions

Also available in: Atom PDF