Project

General

Profile

Actions

Bug #1610

closed

v6 IPsec tunnels can trap 12 the kernel

Added by Seth Mos over 13 years ago. Updated over 12 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
IPsec
Target version:
Start date:
06/18/2011
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.1-IPv6
Affected Architecture:

Description

Configuring a IPsec tunnel with v6 endpoints and a v6 tunnel network is no issue in the ui. It all works as expected.

- v6 tunnel endpoints do not get automatic port 500 and 4500 firewall rules. Needs fixing.
- traffic passes without issue.

When opening the dashboard or the status IPsec page it reasonably reliably triggers a trap 12 in the kernel.

Most likely the one shot patch not keeping note of 128 bit addresses vs the 32 bit v4.

Actions

Also available in: Atom PDF