Bug #12587
closedIpsec lost trafic and status failed
0%
Description
I have a problem with an Ipsec tunnel.
I have a tunnel established between a Pfsense 2.5.2 and a Checkpoint and when establishing the connection it works but when it renegotiates, many times it happens that there is no traffic in the direction of the pfsense. Example, when making a PING from lan of the Pfsense, the destination host responds but the Pfsense does not receive the packets. The are packet out but not in and no problem on the Checkpoint extreme.
On the other hand, I have seen that there are times when "phase 2" and "Connect Childrens" are seen because they are not established. If this button is pressed, it happens that all Ipsec connections stop showing status and the following is seen on the console:
swanctl --list-sas
connecting to 'unix:///var/run/charon.vici' failed: Connection refused
And the only way to recover normal ipsec funtion is reboot Pfsense.
Updated by Ricardo ot about 3 years ago
- File Captura de pantalla 2021-12-13 a las 14.47.53.png added
Updated by Jim Pingle about 3 years ago
- Status changed from New to Rejected
There is not enough information here to classify this as a bug, though many IPsec issues have already been addressed on 22.01/2.6.0 snapshots. This site is not for support or diagnostic discussion.
For assistance in solving problems, please post on the Netgate Forum or the pfSense Subreddit .
See Reporting Issues with pfSense Software for more information.
Updated by Jim Pingle about 3 years ago
- File deleted (
Captura de pantalla 2021-12-13 a las 14.47.53.png)