Mobile IPsec broken when using strict certificate revocation list checking
Enabling Strict CRL Checking under Advanced Settings in IPSec produces the following error:
"loading connection 'con-mobile' failed: unknown option: strictcrlpolicy, config discarded"
Updated by Jim Pingle 8 months ago
- Tracker changed from Bug to Regression
- Project changed from pfSense Plus to pfSense
- Category changed from IPsec to IPsec
- Assignee set to Jim Pingle
This isn't specific to plus, and is a regression from 2.4.5.
Looks like the parameter format changed and the config needs to be updated to follow:
|Off||strictcrlpolicy=no (default)||connections.<conn>.remote<suffix>.revocation=relaxed (default)|